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Vendor-backed Lobbyin 
Groups Cozy Up to DHS 


Organizations’ self-serving agendas raise 
concerns that security beneha will fall to users 





BY DAN VERTON 

WASHINGTON 

When the Department of 
Homeland Security convenes 
its National Cyber Security 
Summit in California on Wed- 
nesday, its stated aim will be 
to improve cooperation with 
the private sector. But the 
question is whether it’s coop- 
erating too closely with IT 
vendor special interests. 

The DHS is hosting the 
event in collaboration with IT 
vendor organizations whose 
lobbying activities are coming 
under increased scrutiny for 
pushing an agenda that would 
place the burden of security 
on the government and users 
rather than on the vendors 
that sell the products. 

Co-sponsoring the event, to 
be held in Santa Clara, are the 


Information Technology Asso- | 





A guide to IT vendor organizations: 
oO QuickLink 43140 

TechNet offers a security resource: 
© QuickLink 43170 

Q&A: The Commerce Depart- 
ment’s Bruce Mehiman leaves for 


an IT vendor advocacy group: 
© QuickLink 43143 


ciation of America, the Busi- 


ness Software Alliance, the 


TechNet alliance of CEOs and 
the U.S. Chamber of Com- 


| merce. A Computerworld re- 
| view of the public policy 


statements of these groups 


| found nothing to indicate that 
| they have ever taken a posi- 
| tion that calls on IT vendors 


to improve the security and 

quality of their products. 
Moreover, the vendor 

groups partnering with the 


Look North, Workers Advised 


IT jobs are available in 
Canada, where pay is 


$60,000 Canadian, or roughly 


| $45,000 U.S., based on recent 


lower but soare costs | 


BY PATRICK THIBODEAU 
Unemployed U.S. IT workers 
may be able to find work in 
Canada, where near-shore 
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outsourcers take advantage of 
their country’s lower 
costs. 

The average IT salary 
paid by Keane Inc. to 
employees at its appli- 
cation development 
center in Halifax, Nova 
Scotia, is around 


“Come to 
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exchange rates. 

While that pay rate might 
seem low to U.S. IT workers, 
it’s “considerably higher” than 
the average salary in the Hali- 
fax area, said Stephen Lund, 
president and CEO of Nova 
Scotia Business Inc., a govern- 
ment-backed economic 
development agency. 
“You can live in Nova 
Scotia with a lot less 
money than you can 
live in a lot of other 
places,” he said. 

Canada Jobs, page 12 


‘Corpo 
| ears Follow 
‘Mono Project 


| Novell faces obstacles 





DHS this week appear to share 
an agenda aimed at frustrating 
legislation that would require 
companies to conduct third- 


| party security benchmarks and 


report the results each year in 


| their annual reports [Quick- 

| Link 42668]. All of those orga- 
| nizations played a role in 

| blocking a bill with such goals 


last month, according to offi- 


| cials involved in drafting the 
| legislation who spoke on con- 
| dition of anonymity. 


While many industry execu- 


| tives spoke on the record about 
| the role of vendor groups in 
| shaping public policy, others 


Lobbying, page 16 
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Running .Net apps on 
Linux has appeal, but 


BY CAROL SLIWA 


Plenty of corporate develop- 
ers watched with great inter- 
est when Novell Inc. unveiled 
a road map for the open- 
source Mono project that it 
acquired with Ximian Inc. 
That’s because Mono could 
give them a chance to run Mi- 
crosoft Corp.’s .Net-based ap- 
plications on Linux or Unix. 
Launched in 2001, the Mono 
project is an open-source ver- 
sion of Microsoft’s .Net Frame- 
work, which includes a run- 
time for the Common Lan- 
guage Infrastructure, a C# 
Mono Project, page 61 
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finally arrived. But it also carries risks and 
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indiana’s jobs agency 
cancels a $15.2 million IT 
services contract with a 
company that planned to 
import workers from India. 


Dell brings PC support back 

to the U.S. The company is 
rerouting tech-support calls 
about its corporate PCs from 
India in response to customer 
complaints. 


Airbus will use Web-based 
software to procure all goods 
and services for a new mili- 
tary transport plane. 


The Army plans to test two 
kinds of RFID tags on food 
shipments. 


Oracle says it will launch a 
proxy fight as part of its on- 
going bid to buy PeopleSoft. 


"Tis the season for online se- 
curity. Internet merchants 
should have systems in place 
to thwart online fraudsters 
and identity thieves. 


Users are approaching Web 
services with caution amid 
security and performance 
concerns. 


Sarbanes-Oxley IT costs 
can be hard to pin down, 
managers find. 


IT spending as a whole is 
expected to rise next year, 
but not in all industries. 


EMC adds a third-party data- 
base archiving tool to fill a 
gap in its information life- 
cycle management offering. 


TECHNOLOGY 


. 


23 Cool Stuff 2004. 
From a monumen- 
tal monitor to a 
duct-tape wallet, 
Computer- 
world 
: takes its 
annual look 
at gifts that are 
guaranteed to warm 
a gadget lover’s heart. 


34 QuickStudy: WiMax. The 


Worldwide Interoperability 
for Microwave Access stan- 
dard is the next step on the 
road to a wireless world, 
extending broadband wire- 
less access to new locations 
and over longer distances. 


38 Security Manager’s Journal: 


Bad Policy Makes for Weak 
Passwords. Vince Tuesday 
finds that murky policies 
and sloppy security practices 
have left end-user accounts 
vulnerable to attacks at his 
company. 


MANAGEMENT 





46 Q&A: Thinking Like a Man- 


ager. Harvard Business Review 
author Jonathan Gosling tells 
why good managers are crucial 
to a company’s success and 
offers five mind-sets that can 
help you think like a manager. 


52 Newsmaker: CIO 


Mark Quinlan 
talks about the 
banking indus- 
try and his new 
role at Charter 
One Financial. 


8 On the Mark: Mark Hall 
learns about an antispam proj- 
ect that exterminates 99% of 
the misdirected missives. And 
he might shop for a Linux 
DVD player for the holidays. 


20 Maryfran Johnson tests an 
array of gadget gift ideas on 
her Supergeek at home. 


20 Pimm Fox doubts that Novell 
can make its acquisition of 
SUSE work. Users, however, 
should make out nicely. 


Dan Gillmor worries that the 
IT industry’s fortunes haven't 
improved, despite good news 
from industry heavyweights. 


Paul A. Strassmann warns 
that security threats are the 
dark side of self-adapting 
software’s potential. 


52 Paul Glen reminds you that 
it’s time for the dreaded annu- 
al planning exercise. But he 
offers a new way of doing it 
that focuses on organizational 
teamwork for better results. 


62 Frankly Speaking: Frank 
Hayes suggests that you 
recruit the “gadget guys” in 
your organization to help you 
plug security holes opened by 
the many cool devices end 
users keep bringing in. 
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Eric Vasbinder, a senior product manager at 
Rendition Networks. He discusses the prob- 
lems with ACLs and how to manage them 
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Scripting Holes 
Reported in IE 


Microsoft Corp. said it’s investi- 
gating possible security flaws in 
the Active Scripting feature that’s 
built into its Internet Explorer 6.0 
Web browser. Security research- 
ers reported the vulnerabilities 
and advised users to disable the 
feature to prevent attackers from 
taking remote control of their 
PCs. Microsoft said it had not 
been informed of any attacks. 


Integration Team 
Leader Quits HP 


Jeff Clarke, one of the two execu- 
tives who led the integration team 
after Hewlett-Packard Co. ac- 
quired Compaq Computer Corp., 
resigned from his job as executive 
vice president of global opera- 
tions at HP. Clarke was Compaq’s 
chief financial officer prior to the 
May 2002 merger. HP said his 
resignation “was mutually agreed 
to and was appropriate.” Clarke 
couldn’t be reached for comment. 


NetApp Upgrades 
Secondary Storage 


Network Appliance Inc. tomorrow 
plans to unveil an upgrade of its 
NearStore secondary-storage disk 
array as part of a wider announce- 
ment involving several products 
and partnership deals. Sunnyvale, 
Calif.-based NetApp said the Near- 
Store R200, which includes an en- 
hanced version of its SnapVault 
data management software, will 
be released this month. 


CRM Woes Persist 
At AT&T Wireless 


AT&T Wireless Services Inc. said 
it’s still struggling with CRM 
system glitches that have been 
affecting the Redmond, Wash.- 
based company since Nov. 1. An 
AT&T Wireless spokesman would 
not predict when the problems 
will be fixed. They are preventing 
the company from signing up new 
users of its GSM/GPRS service 
[QuickLink 42831]. 
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Employment Agency 
Scuttles India Contract 


Governor orders cancellation of system 


redesign contract amid controversy 





BY THOMAS HOFFMAN 
T THE BEHEST of In- 
diana’s governor, a 
state agency that 
helps unemployed 
residents find jobs has can- 
celed a $15.2 million IT ser- 
vices contract with a company 
that planned to import up to 
65 workers from India. 

Gov. Joe Kernan on Nov. 20 
ordered the Indiana Depart- 
ment of Workforce Develop- 
ment (DWD) to end its deal 
with Tata America Interna- 
tional Corp. as part of a new 
plan to overhaul the state’s 
procurement processes. The 
proposed changes are aimed 
at ensuring that Indiana-based 
companies get more chances 
to win contracts. 

“After having a chance to 
discuss our vision of how the 
state should do business and 
how we can provide better op- 
portunities to Indiana compa- 
nies and workers, we conclud- 
ed that this contract did not fit 
in that framework,” Kernan 
said in a statement. 


Legislators Panned Deal 
New York-based Tata Ameri- 
ca, which is also known as 
TCS America, was supposed 
to help the DWD redesign a 
system used to process unem- 
ployment claims and taxes. 
The DWD awarded the con- 


| tract to TCS last summer, and 


work began Nov. 4. But the 
deal angered some state legis- 
lators, who complained that 
the planned use of Indian pro- 
grammers went against the 
very nature of the DWD’s 
charter [QuickLink 42838]. 
Patrick Murphy, a deputy 
commissioner at the DWD, 
last week said TCS will con- 
tinue work on the contract for 
30 days beyond the cancella- 
tion date, partly to train IT 
staffers at the agency on de- 
veloping Java applications. 





The DWD will pay the compa- 
ny for services rendered but 
won't be obligated to pay a 
termination fee, Murphy said. 
It’s unclear when the DWD 
will rebid the contract. Mur- 
phy said the governor’s office 
will review the agency’s pro- 
curement procedures “to see 
if we can give Indiana firms 
more opportunities” to bid. 
TCS beat out two other fi- 
nalists for the DWD contract 
— Accenture Ltd. and Deloitte 
Consulting. No Indiana-based 
businesses submitted bids, al- 
though Murphy said some 


were included among a total 
of 84 companies that received 
| invitations to attend a prebid 
conference in October 2002. 

A spokesman for TCS, a 
subsidiary of Tata Consultan- 
cy Services in Bangalore, In- 
dia, declined to comment in 
detail about the cancellation. 
“This is a decision made by 
the state of Indiana, and we 
will abide by it,” he said. 

TCS’s bid was $8.1 million 
lower than the next closest 
offer, according to the DWD. 
The agency plans to replace 
its current claims and tax 
processing system, which runs 
on a Unisys Corp. mainframe, 
with a client/server applica- 
tion written in Java. 
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‘ After having 
a chance to 
discuss our vision 
of how the state 
should do business 
. .. we concluded 
that this contract 
did not fit in that 
framework. 
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INDIANA GOV. JOE KERNAN 


Jeff Drozda, a Republican 
state senator who criticized 
the contract with TCS, is 
sponsoring legislation that 
would ban state contractors 
from using foreign workers on 
IT projects and other initia- 
tives. Drozda said he expects 
the state Senate’s Economic 
Development and Technology 
Committee to hold a hearing 
on the bill today. @ 43167 





User Complaints Push Dell 
To Return PC Support to U.S. 


Customers say 
tech help in India 
not good enough 


BY BOB BREWIN 
Dell Inc. last week said it has 
stopped routing most of the 
technical support calls from 
U.S.-based users of its corpo- 
rate PCs to a facility in India, 
after some customers com- 
plained about the quality of 
the help they received. 
Support operations related 
to Dell’s Optiplex line of desk- 
top PCs and its Latitude note- 
books are being moved back 
to facilities in Texas, Idaho 
and Tennessee, said company 
spokesman Jon Weisblatt. 
“Corporate customers were 
telling us they didn’t like the 
level of support they were get- 
ting, and in the normal course 
of business, we made some ad- 
justments,” Weisblatt said. . 
Ned May, an analyst at mar- 
ket research firm IDC, said he 
had also heard criticisms from 
corporate IT managers about 
the support they were getting 


from Dell’s call center in Ban- 
galore, India. May called the 
shift of support back to the 
U.S. “an aggressive move” that 
should earn Dell some good- 
will from users. 

Dell’s support flip-flop is 
also a victory for U.S.-based 
IT workers, said Marcus 
Courtney, president of the 
Seattle-based Washington Al- 
liance of Technology Workers. 
The problems encountered by 
Dell should show other tech- 
nology vendors that some- 
times “cheaper is not better,” 
Courtney added. 

But it may be a short-lived 
victory. Barry French, another 
Dell spokesman, said a portion 
of the calls from U.S. PC users 
will still go to India, where 
support has been handled 
since mid-2001. He also indi- 
cated that Dell may shift all of 
the support back offshore at 
some point. “We are increas- 
ing the number of people we 
have providing support in In- 
dia,” he said. “Dell has a num- 
ber of call centers around the 





world, and we will continue to 





optimize those to provide the 
best customer experience.” 

IDC’s May said he sees off- 
shore sourcing, in which IT 
jobs such as technical support 
are moved from the U.S. to 
less expensive countries, as 
an inevitable trend. “The eco- 
nomics are too compelling,” 
he said. 

Dell’s decision on PC sup- 
port was disclosed less than 
a week after Michael Dell, its 
chairman and CEO, bally- 
hooed the establishment of a 
“state-of-the-art” Enterprise 
Command Center support fa- 
cility in Round Rock, Texas, 
during a Nov. 18 press confer- 
ence at Comdex/Fall 2003. 

The new facility will pro- 
vide support to users of Dell’s 
corporate servers and storage 
devices. Gary Cotshott, vice 
president and general manag- 
er of Dell’s services unit, said 
the company set up the center 
because the expectations of 
users “continue to go up as we 
penetrate the enterprise mar- 
ket.” @ 43172 
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Aircraft Maker Turns to Sourcing 
Software for New Military Planes 


| Airbus “is confronted with a 


Airbus says technology will manage 
procurement of millions of components | 





BY MATT HAMBLEN 

Continuing a staged rollout 
that began 19 months ago, Air- 
bus SAS in the coming weeks 
will expand its use of Web- 
based software to support all 
the steps involved in sourcing 
goods and services for a new 
military transport plane. 

The Toulouse, France-based 
aircraft manufacturer will use 
its Sup@irWorld online sourc- 
ing system to drive procure- 
ment activities ranging from 
identifying potential suppliers 
for the A400m program to 
awarding contracts, said Fred- 
eric Geoffrion, project manag- 
er for the software. “That’s a 
clear message to suppliers that 
Sup@irWorld is not a toy,” 
Geoffrion said last month. 

Airbus last May signed a 
contract to make 180 of the 
A400m planes, at an average 
selling price of $100 million 
each, for use by seven Euro- 
pean nations. Geoffrion said 
suppliers will bid for contracts 
on millions of parts and sys- 
tems needed by Airbus, which 
is due to have the first A400m 
ready to fly in 2008. 


Custom Apps 

The Sup@irWorld system is 
based on a customized version 
of Ariba Inc.’s sourcing appli- 
cations, said Geoffrion. Limit- 
ed use of the system began in 
May 2002, and an updated ver- 
sion was added last June. Air- 
bus last month announced 
plans to use the software to 
support sourcing processes 
throughout its operations. The 
A400m project is the first in 
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Correction 

In the Comdex story in last 
week's issue, a highlighted quote 
on page 49 was mistakenly at- 
tributed. The quote should have 
been attributed to Malachy Smith 
of DNM Technology Ltd. 





| which sourcing will be fully 


automated, Geoffrion said. 

He noted that more than 
1,000 buyers at Airbus have 
used the technology on vari- 
ous programs and that bids 
from 1,500-plus suppliers have 
been processed through the 
system. Sup@irWorld is being 
used to replace a paper-based 
approach and has already pro- 
duced cost savings, Geoffrion 
said. He wouldn’t divulge any 
specific figures but said the 
system lets Airbus solicit bids 
from many more suppliers 
than it could before, generat- 
ing increased competition and 
lower prices. 

That’s important, because 


| analyst at Gartner Inc., said 
| Airbus “is further down the 


| ers in developing Web-based 
| sourcing systems. He estimat- 
| ed that the company has spent 
| more than $2 million to buy 
| ware. But successful rollouts 
| areturn on investment in less 
| than a year, he said. 

for months, said Sup@irWorld 


| some of the sourcing opera- 


| decker aircraft, a 530-seat 


difficult market, and we have 

to fight everywhere to take the 

costs down,” Geoffrion said. 
Andy Kyte, a London-based 


track” than most manufactur- | 


and customize Ariba’s soft- 

of sourcing tools can produce 
Kyte, who has been follow- 

ing the Airbus implementation 

has been used to automate 


tions for the A380 double- 





Army to Test Passive RFID 
Tags on Food Shipments 


Trial will include 
temperature 
sensor devices 

BY BOB BREWIN 

The U.S. Army will begin the 
Defense Department’s first 
test of passive radio frequency 
identification (RFID) tags in 


February, using the same kinds | 


of technology and electronic 
product code (EPC) standards 
that Wal-Mart Stores Inc. is 
requiring its top 100 suppliers 
to adopt. 

But the Army is adding a 
twist to its pilot: the use of 
additional RFID tags equipped 
with battery-powered sensors 
that can monitor temperatures 
in the areas where goods are 
shipped and stored. Those 
tags are designed to ensure 
that food sent to troops in the 
field gets used before its shelf 
life is exceeded. 

Chief Warrant Officer 
Stephen Moody, a coordinator 
of the RFID program at the 


| 
| 
| 
| 





Army Soldier System Center 
in Natick, Mass., said last 
week that the facility has com- 
pleted final tests of the com- 
ponents that will be used in 
the RFID “proof of concept” 
demonstration. That includes 


| passive, write-once tags that 


operate at 915 MHz and the 


| sensor-equipped devices, 


which function at 2.4 GHz. 
The Army is buying both 
kinds of tags from Alien 
Technology Corp. in Morgan 
Hill, Calif. Paul Drzaic, vice 
president of advanced devel- 
opment at Alien Technology, 
estimated that the Army will 
use about 1,000 tags and 12 
RFID readers in the pilot 
test, which will involve the 
movements of Meals Ready 
to Eat (MRE) and canned 
rations in a simulated battle- 
field supply depot set up in 
San Joaquin, Calif. 
According to Drzaic, the 
915-MHz tags are similar to 
the ones that Wal-Mart in- 
tends to use within its supply 





plane that’s in the third year 
of an eight-year development 
program with an expected 


| total cost of $12 billion. 


Kyte added that roughly 


| 20% of the top 2,000 compa- 


nies worldwide already use 


| Web-based applications to 
| manage some of their sourcing 


activities, and he predicted 
that the figure will grow to 


| about 50% within two years. 


chain when the retailer’s 


mandate to put RFID tags on 
shipping pallets and cases 


goes into effect in January 


2005. The Pentagon issued a 
similar edict to its suppliers 


| in October. 


Moody said the data stored 
on the tags, including a unique 


| product identifier, the date of 


manufacture and the name of 
the food supplier, will con- 
form to EPC specifications 
being developed by Boston- 
based EPCglobal Inc. Wal- 


| Mart also plans to use them. 


“Semipassive’ Sensors 
But Moody said extreme heat 
such as that experienced in 
Iraq can rapidly reduce the 
shelf life of MREs, dropping it 
from a normal average of 36 
months to just one month at a 
temperature of 102 F. Because 


| of that, the Army has to go 


beyond standard-issue passive 
RFID tags, he said. 

In the test, one of the so- 
called semipassive devices 
with temperature sensors will 
be placed on each pallet of 
goods. In comparison, regular 
passive tags will be attached 


to each box of food on a pailet. 





Sunnyvale, Calif.-based Ari- 


| ba competes with Frictionless 

| Commerce Inc. in Cambridge, 

| Mass., and FreeMarkets Inc. in 
| Pittsburgh, plus a variety of 

| ERP and supply chain soft- 


ware vendors that sell sourc 
ing technology as part of their 


| products. But Kyte said Ariba 
| offers a broader set of tools 
| than its rivals and has a strong 


| presence in Europe. @ 43137 


The Army is an early 


| adopter of the semipassive 
| technology, Drzaic said, but he 


added that such tags could 


| have widespread commercial 


uses in “cold chain” manage- 


| ment of perishable goods. 


One potential drawback is 


| the fact that the devices cost 
| $10 to $20 each, although 
| Drzaic said volume produc- 


tion could drive the price 


| down to $1 or so. 


As part of the Army’s test, 


| communications from the 


RFID readers will be sent over 


|} an 802.lla wireless LAN that 

| operates in the S-GHz band to 
| a stand-alone Dell Inc. com- 

| puter running middleware de- 
| veloped by OATSystems Inc. 


in Watertown, Mass. Moody 
said OATSystems is also the 
systems integrator for the 


| RFID pilot project. @ 43173 


MORE NEWS = 


Pentagon officials will 
spell out their RFID requirements to 
suppliers at a meeting this week 


QuickLink 43193 


Technology page to read additional stories: 


QuickLink a3690 
www.computerworld.com 
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Microsoft Probes 
Exchange for Flaw 


Microsoft Corp. is investigating 
a potential security flaw in Ex- 
change Server 2003, which 
would be the first found in the 
software since it was launched 
in October. Microsoft said an ini- 
tial probe indicated that a prob- 
lem with the log-in function for 
Exchange’s Outlook Web Access 
component occurs when users 
disable the software’s Kerberos 
authentication. 


Sprint Sets Plan to 
Cut 2,000 Jobs 


Sprint Corp. said it plans to lay 
off about 2,000 workers by 
year’s end, including some of its 
IT staffers. The cuts will affect 
Sprint’s corporate and consumer 
business units. They’re being 
made in addition to workforce re- 
ductions that will accompany ap- 
plication development outsourcing 
deals Sprint announced in Sep- 
tember with IBM Global Services 
and Electronic Data Systems Corp. 


HP Adds Storage 
For Small Users 


Hewlett-Packard Co. announced 
a consolidated line of disk stor- 
age devices aimed at small and 
midsize users in a bid to make its 
product offerings for such cus- 
tomers less confusing. HP also 
added a series of packaged sys- 
tems that combine its Storage- 
Works Modular Smart Array de- 
vices with its ProLiant servers. 
Prices start at $3,200. 


Linux Lab Takes 
Sides Against SCO 


Open Source Development Labs 
Inc., which is funded by a group 
of Linux vendors, published a pa- 
per opposing The SCO Group 
Inc.’s legal attacks against Lin- 
ux. The paper was written by Co- 
lumbia University professor Eben 
Moglen and presented at an Oc- 
tober meeting of the organiza- 
tion’s customer advisory council. 


NEWS 


MARK HALL #®ON THE MARK 


Spam Exterminator 
Project Kills 99%... 


... of incoming nuisance e-mails, and that’s before you begin applying 
basic spam-filtering techniques such as blacklists or subject-line 
analysis, brags Jeff Brainard, product marketing director at Mirapoint 
Inc. in Sunnyvale, Calif. The messaging appliance company’s upcoming 
spam fighter, code-named Exterminator, will likely hit the market in Ql 
2004. Brainard is mum on the details, but he does reveal that the high 


level of success the product is having 
during its testing phase is a result of con- 
tent-analysis techniques. And false posi- 


tives are kept to a bare minimum, he says. 


Mirapoint is also experimenting with 
what can only be called a network-effect 
method to manage both spam and viruses. 


That is, if you’re among the few thousand | 


users of Mirapoint messaging appliances, 
you'll be able to opt into a system that 
links you with other Mirapoint users so 
that spam or viruses that get caught in 
your traps can be identi- 
fied to others in the chain 
and automatically get fil- 
tered out. As this feature 
links more users, fewer 
spam and virus-laden mes- 
sages will get passed along. 
Who'd have ever thought 
spam would bring us all to- 
gether? Kumbaya to you, too, 
dude. ® OuterBay Technolo- 
gies Inc. in Campbell, 
Calif., struck a nice pot of 
gold when it inked a deal 
with EMC Corp. (see story, 
page 16) for its information 
life-cycle management 
software. Sources also re- 
veal that modules to mi- 


Oracle Plans Proxy Fight With PeopleSoft 


Diehard Linux and open- 
source fans can extend their 
support for the technologies 
from inside the data center 
to under the Christmas tree 
this month when the Linux- 
and Helix-based Media- 
crea OLR oes Cle 
Some RHO E Le) 
UE any clients) 
and e-mail unit from Video 
Without Boundaries Inc. in 
Fort Lauderdale, Fla., should 
have a retail price of $399. 


| grate Siebel and SAP applications 
{QuickLink 38966] will be ready in the 
first quarter. After that, OuterBay plans 
to release tools to manage the archiving of 
Outlook and Notes e-mail in the first half of 
2004. = If you’ve got remote sites to mon- 
itor but don’t have a virtual private net- 
work — or even if you do — consider 
this week’s release of SilverBack 4.0 from 
SilverBack Technologies Inc. in Billerica, 
Mass. The upgrade adds Secure Sockets 
Layer to the company’s remote VPN 
monitoring capabilities for 
secure interconnections be- 
tween remote sites and your 
data center. When you load 
software called Silver- 
Streak at your remote 
sites, the offering uses ei- 
ther a VPN or SSL to re- 
port on the status of net- 
work components such as 
uninterruptible power 
supplies, routers and desk- 
tops to a central manage- 
ment console. The up- 
grade adds alert suppres- 
sion to the tool so that if a 
router fails, network man- 
agers receive only one 
alert instead of one for 





www.computerworld.com 


every device unable to connect to the 
network through the downed router. 
Pricing depends on the number of de- 
vices monitored. ® Bandwidth grows and 
grows, and that can mean only one thing: 
a bigger fire hose of data aimed at your serv- 
er’s CPUs. A 100Mbit/sec. Ethernet con- 
nection shoots 148,000 packets per sec- 
ond at your server. When you upgrade to 
10Gbit/sec. Ethernet, that jumps to 
14,800,000 packets. Although faster 
microprocessors and more of them in 
your server will help, a more efficient ap- 
proach might be to add a protocol accel- 
erator to your server. Maybe one from 
Astute Networks Inc. in San Diego. The 
PA1000 Super HBA is designed to offload 
unsecured TCP and iSCSI protocol pro- 
cessing, so servers as well as disk arrays 
in a storage-area network or network- 
attached storage can benefit from the 
protocol acceleration. The PA1000 Super 
HBA has four standard RJ-45 network 
ports, and it plugs into a single PCI-X 
slot. If you need to process packets se- 
curely, the SA1000 can accelerate SSL and 
IPsec along with the other protocols via a 
chip from Astute’s partner Cavium Net- 
works Inc. in Santa Clara, Calif. Volume 
manufacturing won’t start until next 
quarter, and you'll initially need to order 
the accelerators through your server or 
array supplier. ® Tying asset management 
with work-order operations seems pretty 
smart. That’s what the folks at Corner- 
Post Software LLC in Duffield, Va., have 
done. Their new TotalTrack ASP-style 
service goes live this week. Access to 
TotalTrack is role-based, so you can let end 
users enter information about their as- 
sets or work-order needs, or you can 
route the requests through systems ad- 
ministrators. Road warriors will be able 
to get or give data with handheld devices 
and tablet PCs beginning in QI. Annual 
service-provider fees begin at $600 for 
education clients. @ 43115 


Andrew Ball, a London- 
based analyst at Frost & Sulli- 
van Inc., said the number of 





BY MARC L. SONGINI 
Executives at Oracle Corp. 
last week reaffirmed their in- 
tention to pursue the compa- 
ny’s hostile bid to buy People- 
Soft Inc. and said Oracle will 
propose its own slate of pro- 
acquisition directors as an al- 


ternative to PeopleSoft’s board. 


Oracle has been the unwanted 


suitor of PeopleSoft since June. 


PeopleSoft hasn’t set a date 
for its 2004 shareholder meet- 
ing, but Oracle intends to 
nominate a list of replacement 





directors next month. Safra 
Catz, an executive vice presi- 
dent at Oracle, said the com- 
pany will submit a slate of 
candidates even if U.S. and Eu- 
ropean regulators have yet to 
approve the takeover. 

Catz and two other execu- 
tives tried to dispel rumors 
that the software vendor 
would throw in the towel be- 
cause of PeopleSoft’s poison- 
pill provisions and U.S. and 
European regulators’ deci- 
sions to extend their probes. 





“We remain committed,” 


| said Chuck Phillips, another 


vice president, although he 
added that Oracle won’t pay 
an unreasonable price for Peo- 
pleSoft and that it’s investigat- 
ing other potential mergers. 

A PeopleSoft spokeswoman 
declined to comment on Ora- 
cle’s plan to seek control of 
the Pleasanton, Calif.-based 
company’s board. But she said 
that PeopleSoft officials “are 
not apprehensive” about a 
proxy fight with Oracle. 





PeopleSoft users looking for- 
ward to a merger with Oracle 
can “be counted with the fin- 
gers on one hand. Throw in 
the regulatory delays, and Or- 
acle’s ability to convince itself 
that this deal still makes sense 
is one of the wonders of the 


modern world.” @ 43134 


TAKEOVER SAGA 


For full coverage of Oracle's bid to buy 
PeopleSoft, go to our Web site: 


QuickLink a3320 
www.computerworld.com 
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NEWS 


Fears of Online Fraud Rise 
As Shopping Season Begins 


Merchants expect growth in cybercrime 


to keep pace with increase in Web sales 





BY JAIKUMAR VIJAYAN 
HE HOLIDAY shop- 
ping season promis- 
es to be a busy one, 
not just for Internet 

retailers, but for opportunistic 

online fraudsters and identity 
thieves as well. 

As a result, Internet mer- 
chants — especially the small- 
er ones — will need to make 
sure they have adequate 
fraud- and theft-detection 
processes in place before the 
rush begins, industry experts 
warned. 

“T think the problem is go- 
ing to be real bad,” said Tom 
Mahoney, founder of Mer- 
chant 91, a 1,600-member on- 
line forum in which merchants 
can share fraud-prevention 
information. 

“All the projections we’re 
seeing are for a significant 
increase in online sales. Be- 
cause of this rush, there will 
be less time for smaller mer- 
chants that do some or all 
of their own fraud screening 
to do it well,” Mahoney said. 
They should expect an in- 
crease in the number of suc- 
cessful fraudulent transactions 
and lost dollars as a result, 
he predicted. 


Using the Right Tools 
However, the growing avail- 
ability of fraud-detection 
tools and services should help, 
said Julie Fergerson, co-chair- 
man of the Merchant Risk 
Council, a fraud-fighting 
group in New York. 

For instance, merchants can 
use so-called geolocational 
tools that scan IP addresses to 
identify orders that are being 
placed from outside the coun- 
try, Fergerson said. 

Similarly, new card-verifica- 
tion methods that are available 
from all of the major credit 
card companies allow mer- 
chants to ensure that the per- 





son entering the card number 
actually has the card in his 
possession. And fraud-detec- 
tion services, which cost be- 


| tween 5 cents and $1 per trans- 


action, let merchants automat- 


| ically flag suspicious transac- 


tions, Fergerson noted. 
Anaconda Sports Inc., a 
Kingston, N.Y.-based online 
sporting goods retailer, has 
signed up for one such service 
from VeriSign Inc. in Moun- 


| tain View, Calif. For 8 cents 





per transacuion, Veriolgn il- 
ters Anaconda’s transactions, 
looking for stolen credit cards, 
verifying addresses and iden- 
tifying purchases attempted 
from outside the country. The 
service has helped the compa- 
ny reduce bad debt and 
chargebacks because of fraud- 
ulent transactions, said Robert 
Meyer, director of infrastruc- 
ture operations at Anaconda. 
VeriSign, which provides 
payment-processing services 
for more than 97,000 North 
American businesses and 
processed nearly $7 billion 
in online retail sales in the 


Users Proceed Cautiously 
On Web Services Track 


Concerns remain 


| about security, 
interoperability, 


performance 


BY CAROL SLIWA 


| BALTIMORE 


IBM, Microsoft Corp. and oth- 
er vendors that have been 
pounding the Web services 


| drum for more than two years 
| claim that more and more of 


their customers are building 
Web services. And to a degree, 


| they’re right. 


But the spotty levels of 
adoption by corporate users 
was plainly evident in a ran- 


dom poll of 15 IT professionals | 


at Gartner Inc.’s recent Appli- 
cation Integration and Web 


| Services Summit here. 


Some had taken a service- 


| oriented development ap- 
| proach that yielded a growing 


collection of Web services. 


| But more said that although 
| they think it’s the right direc- 


tion, they’re just getting start- 
ed, with few or even just one 
Web service in production. 
Others expressed skepticism 
about the prospects of Web 





services to address their com- 
plex integration woes. 

“J don’t think the infrastruc- 
ture is in place to enable the 
throughput,” said Piet Potgi- 
eter, an application architect 
at Old Mutual PLC, a financial 
services and insurance firm in 
Cape Town. 

Potgieter, who works with 
mainframes, said Web services 
may have their place where re- 
sponse time doesn’t matter. 
But in his opinion, latency 


| problems will need to be re- 


solved before Web services 
can handle high throughput 


See Gea 
_ Web 
Services 
Gotchas 


® Legacy interfaces must be 
mapped to generic interfaces. 


® Preparation for integration 
must include data cleansing 
and interface preparation. 


= Big files move slowly. 


® Services must be document- 
ed in detail for future use. 


SOURCE: DAVID SMITH, GARTNER INC 





third quarter, is seeing a sub- 
stantial increase in transaction 
volumes going into the shop- 
ping season. The number of 
transactions on its networks 
jumped from 61 million in the 
third quarter of 2002 to more 
than 91 million in the same 
quarter this year, and that fig- 
ure is continuing to rise enter- 
ing December. 

Along with that growth has 
come a sharp spike in fraudu- 


| lent transactions, said Trevor 


Healy, a director with Veri- 
Sign’s fraud-prevention ser- 
vices. “While e-commerce ap- 
pears to be alive and kicking, 
the growth rate in the levels of 
fraud appear to be growing at 
the same rate as well,” Healy 


said. “What we are seeing is 


about 3% to 4% of a retailer’s 
bottom line being consumed 


by fraud.” © 43107 


across a network. 

Jonathan Pettus, a manager 
in the integration project office 
at NASA's Marshall Space 
Flight Center in Huntsville, 
Ala., said he can foresee Web 
services being useful for infor- 
mation exchange with the 
public. For instance, NASA 
next spring plans to advertise 
job openings through 
Monster.com and use a SOAP 
adapter from SeeBeyond 
Technology Corp. to enable 
résumés to get into its back- 
end systems through a Web 
service, Pettus said. 

But he said NASA has no 
plans for a full conversion to 
Web services to get internal 
applications to interoperate. 
“How long is it going to take us 
to get the thousands of applica- 
tions that we have in NASA 
Web-serviceable?” Pettus said. 
“That’s not going to happen.” 

Gartner analyst Roy 
Schulte estimated that 95% of 
the Web services being done 
today are internal between 
single-vendor systems on the 
client and server sides. “You 
don’t mix vendor SOAP 
stacks in 95% of the cases be- 
cause they don’t work togeth- 
er if you’re trying to do any- 
thing fancy,” he said. 

Schulte added that there 
won't be “pluggable interoper- 
ability with no customization, 
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a TeSe Camere 


® Have a plan to flag and han- 
dle orders that look suspicious: 


except for the simplest of ap- 
plications,” for at least five 
years, since vendor implemen- 
tations will continue to vary. 

He also predicted that Web 
services between heteroge- 
neous systems over HTTP in 
high-throughput, low-latency 
scenarios won't be possible in 
the foreseeable future. But 
simple SOAP-based request- 
and-reply messages over 
HTTP work today, and reli- 
able messaging and security 
will improve, he added. 

The Web Services Interop- 
erability Organization, led by 
IBM and Microsoft, has been 
working to resolve the 
thornier issues. In the mean- 
time, companies committed to 
Web services are working 
around the limitations. 

Gary Lien, a system archi- 
tect at Life Time Fitness Inc. 
in Eden Prairie, Minn., said his 
company’s external Web ser- 
vices are of a single-partner 
nature, so it is able to deal 
with security. Life Time gets 
around the issue of reliable 
messaging by doing only syn- 
chronous communication, 


he added. @ 43133 


MORE ONLINE 


To read an expanded version of this story, 
visit our Web site: 
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Corel Searching 
For a New CEO 


Corel Corp. said it’s looking for a 
new CEO to replace Derek Bur- 
ney, who was named chairman 

of the software vendor. Amish 
Mehta, an executive from the 
venture capital firm that bought 
Ottawa-based Corel in August, is 
taking over as interim CEO while 
the search proceeds. Corel said 
Burney will help shape its product 
strategy and work to identify new 
business opportunities. 


Linux Group Hit by 
Server Attacks 


The group that organizes the 
open-source Debian Linux devel- 
opment project said four of its 
servers were compromised in a 
hacking incident. The intrusions 
prompted the group to suspend 
e-mail service through the De- 
bian.org domain and lock user ac- 
counts on its other systems. But 
it said an update of the Debian 
GNU/Linux operating system re- 
leased on Nov. 21 wasn’t affected. 


SUSE Upgrades 
Versions of Linux 


SUSE Linux AG in Nuremburg, 
Germany, released a free upgrade 
of its Linux distribution for 
servers, adding an updated oper- 
ating system kernel and other fea- 
tures. SUSE, which last month 
agreed to be acquired by Novell 
Inc., also made available a down- 
load of its SUSE Linux 9.0 desk- 
top operating system. 


Pivotal in Talks With 
Hong Kong Vendor 


Pivotal Corp., a CRM software 
vendor in Vancouver, British Co- 
lumbia, today plans to announce 
whether it has agreed to a buyout 
by Hong Kong-based Chinadot- 
com Corp. To give itself more time 
to negotiate with Chinadotcom, 
Pivotal postponed a shareholders’ 
vote that had been scheduled for 
Nov. 21 on a proposal to combine 
the company with Talisma Corp. 
in Kirkland, Wash. 
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Canada Jobs" 


And Keane is hiring. The 
company last month launched 
a national recruiting drive in 
Canada for its Halifax center, 
now at a head count of 300 
and growing 30% annually, a 
Keane spokesman said. 

Although Boston-based 
Keane doesn’t actively recruit 
in the USS. for its Canadian 
center, it welcomes U.S. work- 
ers, who make up about 5% of 
its workforce there. 

Other Canadian service pro- 
viders are also hiring, but none 
appears to be actively recruit- 
ing U.S. workers. They’re find- 
ing what they need from Cana- 
da’s labor pool, although they 
encourage U.S. IT employees 
to compete for jobs there. 

“There is always a demand 
for good IT people, but to say 
there is ashortage — I wouldn’t 
say that,” said Peter Thomp- 
son, CEO of RIS Resource In- 
formation Systems Inc. The 
Calgary, Alberta-based near- 
shore services provider em- 
ploys approximately 400 
workers, and that number is 
growing annually by about 
20%, he said. 


Open Invitation 

CGI Group Inc., which is 
Canada’s largest IT company 
in terms of the number of its 
employees, increased its head 
count by more than 5,000 in 
the past year, from 14,600 to 
more than 20,000. Half of that 
growth came from acquisi- 
tions of other companies. 

“We've been quietly grow- 
ing very rapidly,” said Eileen 
Murphy, a spokeswoman for 
Montreal-based CGI Group. 
She said some of the Canada- 
based workers are likely U.S. 
expatriates, but the company 
doesn’t maintain such statis- 
tics. It hasn’t had to recruit in 
the U.S. to fill Canadian jobs, 
Murphy said. 

But a top Canadian govern- 
ment official, Keith Parsonage, 
director general of Industry 
Canada’s Information and 
Communications Technologies 
branch, said there’s a demand 


| for U.S. workers in Canada, and 


the country has a liberal immi- 
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gration policy to en- 
courage IT workers 
to head north. All 
U.S. workers need is 
to have a job offer 
and meet certain 
educational and 
training criteria, he 
said. 

Canada’s com- 
puter services sec- 
tor grew 3.2% in 
2002, according to 
government statistics. But to- 
tal IT employment in Canada, 
estimated at about 600,000 
workers, declined 1.3% last 
year. 


SOURC 


Less Bad 
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The USS. high- 
tech industry, in 
comparison, lost 8% 
of its jobs last year, 
declining from 6.5 
million in 2001 to 
6 million last year, 
according to a re- 
port released last 
month by AEA, an 
industry trade group 
in Washington. 

Still, no one is 
saying that Canada is at the 
end of the IT rainbow. Canadi- 
an IT recruiters say they see 
little evidence of a big re- 
bound in the Canadian tech 
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sector, or much interest from 
U.S. workers in Canadian jobs. 

“T don’t sense that Canada 
has any economic advantage 
in terms of opportunities 
over what the States can of- 
fer,” said Murray Conron, an 
IT recruiter at D.L. Hart & 
Associates in Toronto. “I do 
not see trends that U.S. pro- 
fessionals are looking for jobs 
up here.” @ 43164 


MORE ONLINE 


For additional coverage of near-shore 
issues, visit our Web site: 


QuickLink a2290 
www.computerworld.com 


Ottawa’s Pitch: ‘Come to Canada’ 


U.S. IT workers are needed 

and encouraged to take jobs in 
Canada, said Keith Parsonage, 
director general of Industry 
Canada’s Information and Com- 
munications Technologies 
branch. In an interview last week 
with Computerworla’s Patrick 
Thibodeau, Parsonage dis- 
cussed the opportunities 

and lifestyle that await IT 
workers in Canada. Ex- 

cerpts from that inter- 

view follow: 


Many U.S. companies are 
sending application and 
maintenance development 
work to Canada. What impact 
is that having on your IT sec- 
tor? It is very difficult to break 
down the statistics overall. But 
the computer services area, 
throughout the whole upturn 

in the late 1990s and the down- 
turn, continued to grow steadi- 
ly at 8% to 9% a year. It was 
not affected at all by the tech 
swing. 


The value of the Canadian 
dollar, though still favorable 
to the U.S., has been on the 
rise. What impact will that 
have on near-shore develop- 
ment? | think it's going to force 
it to be that much sharper. But | 
don't think it's going to rise to 
where you will see a loss of our 
competitive edge. 


What are your cost advan- 
tages? Our health care system 


confers very significant benefits 
to employers. We have a univer- 
sal health care program here in 
Canada. 


So the employer in Canada 
pays a fraction of what a U.S. 
firm pays for health care? 
Exactly. That's one of the rea- 
sons why we're so competitive - 
because of the differ- 
ence in health care cost. 
The other big issue is 
turnover. For some 
strange reason, Cana- 
dians are pretty loyal to their 
employers. 


How healthy is your technol- 
ogy labor market? At the mo- 
ment, we have over 600,000 
[IT] workers. As of September, 
the unemployment rate for [IT] 
professionals was 4.8% vs. 

an overall unemployment rate 
of 7.8%. 


Canada has suffered a brain 
drain of talented tech work- 
ers heading to the States. Is 
that reversing? Certainly there 


was a phenomenon of talent 
moving down to the States dur- 
ing those boom years. But we 
also had talent from around the 
world pouring into Canada be- 
cause we had a much more lib- 
eral immigration policy, particu- 
larly with software workers, in 
which we would actually fast- 
track them into the country. 
Which is quite different from the 
H-1B visa process which you 
have in the States. 


So it’s easy for a U.S. citizen 
to work in Canada? Absolute- 
ly. They have to show a bona 
fide job offer in Canada and then 
meet a career profile for various 
types of tech workers that sets 
requirements for education, 
training and programming lan- 
guage knowledge, published by 
the Software Human Resource 
Council. 


Is there a demand for U.S. 
workers in Canada? Yes, there 
is. Come to Canada. In fact, you 
may end up working for your 
same company. 


Certainly there was a phe- 
nomenon of talent moving 


down to the States during those 
boom years. But we also had talent 
from around the world pouring into 
Canada because we had a much 
more liberal immigration policy. 
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data. That means huge savings in both development 
and processing time. 

Applications built on Caché are massively scala- 
ble and lightning-fast. Plus, they require minimal or 
no database administration. 

More than just a database system, Caché incor- 
porates a powerful Web application development 


environment that dramatically reduces the time to 
build and modify applications. 

The reliability of Caché is proven every day in 
“life-or-death” applications at thousands of the world’s 
largest hospitals. Caché is so reliable, it’s the leading 
database in healthcare — and it powers enterprise appli- 
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Users Strugel 
Safence4) 


Many see it as an 
ongoing effort with 


BY THOMAS HOFFMAN 
ARBANES-OXLEY readi- 
ness costs can be hard 
for companies to pin 
down, partly because 

complying with the new finan- 

cial reporting law isn’t a one- 
time event like Y2k. 

For instance, Eastman 
Chemical Co. hasn’t even tried 
to evaluate the IT costs associ- 
ated with its Sarbanes-Oxley 
Act compliance initiative, said 
Mark Montgomery, director of 
administrative operations sup- 
port and technology systems 
at the Kingsport, Tenn.-based 
chemicals maker. He noted 
that the required work is 
viewed as “an ongoing effort,” 
not a finite project. 

Montgomery and several 
other corporate managers said 
Sarbanes-Oxley’s mandate 
that companies annually docu- 
ment and attest to the effec- 
tiveness of their financial con- 
trols means that compliance 
work will have to be done on a 
continual basis. 

“A lot of people have this 
mind-set that it’s a one-time 
project,” said Kyle Didier, vice 
president of finance at Regis 
Corp., a Minneapolis-based 
operator of 9,700 hair salons 
in the U.S. and Europe. But he 
added that he expects Regis to 
test its internal financial con- 
trols regularly using a soft- 
ware tool called Certainty that 
was developed by Movaris Inc. 
in Campbell, Calif. 

Regis has been working on 
Sarbanes-Oxley readiness for 
the past nine months and ex- 
pects to complete an initial 
round of documentation and 
testing by year’s end. Didier 
said the company will likely 
incur slightly more than 
$100,000 in IT costs over the 
course of its compliance ef- 
fort. That includes both soft- 





| double-digit per- 


| in the banking and 


ware and manpower expenses, 
he added. 

John Van Decker, an analyst 
at Meta Group Inc. in Stam- 
ford, Conn., said most compa- 
nies are currently focusing on 
Section 404 of the law, which 
requires CEOs and chief fi- 
nancial officers to certify the 
effectiveness of the financial 
controls they have in place. 
Companies with market capi- 
talizations of $75 million or 
more have to comply for fiscal 
years that end on or after June 
15, 2004. Smaller businesses 
and foreign-owned companies 


| have until April 15, 2005. 


Financial Executives Inter- 
national, a Florham Park, N_J.- 
based association of corporate 
finance managers, surveyed its 


| members last May on cost es- 
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timates for complying with 
Section 404. On average, the 
83 respondents expect to 
spend about $480,000 on soft- 
ware, consulting services and 
employee training in advance 
of the compliance deadlines. 
Mark Nagelvoort, vice presi- 
dent and internal control man- 
ager at Hudson United Bank 


Some IT Purse Strings May 
Be Loosened Next Year 


Forecasters predict small increase overall 


| but say spending plans differ by industry 





BY THOMAS HOFFMAN 

IT managers who have quickly 
reacted to demands for cost- 
cutting over the past three 
years could see a payback in 
the form of discretionary 
spending increases next year, 
according to several reports 
and interviews with CIOs. 

But 2004 IT spending plans 
vary widely by industry, said 
Howard Rubin, executive vice 
president at Meta Group Inc. 
in Stamford, Conn. For exam- 
ple, Meta predicted in a report 
released Nov. 18 that the insur- 
ance and manufacturing sec- 
tors will each see 


centage gains ona 
year-over-year ba- 
sis, while spending 


energy industries 
will decline by 
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12% and 15%, respectively. 
Meta’s projected 12% in- 
crease in insurance IT spend- 
ing maps with plans at Re- 
insurance Group of America 
Inc. in Chesterfield, Mo. De- 
mand for new projects from 
its business units will drive a 
12.4% rise in tech spending 
next year even though Re- 
insurance Group’s IT infra- 
structure costs continue to de- 
cline, said Rick Nolle, the com- 
pany’s vice president of IT. 
Allstate Insurance Co. hasn’t 
finalized its 2004 IT budget. 
But Cathy Brune, Allstate’s 
chief technology 
officer, said the 
Northbrook, IIl., 
company won't 
spend any less 
than it does this 
year. It also ex- 
pects to allocate a 
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xley IT’ Costs 


in Mahwah, NJ., said the sub- 
sidiary of Hudson United Ban- 
corp expects its IT costs tied 
to Sarbanes-Oxley to come in 
at less than $500,000, though 
he declined to be more specif- 
ic. That includes the bank’s 
use of a software tool called 
SOXA Accelerator from 
HandySoft Global Corp. in Vi- 
enna, Va., plus expenses for 10 
IT staffers who will spend be- 
tween 5% and 10% of their 
time working on Sarbanes-Ox- 
ley readiness. 

“We're saving significant 
dollars because we’re utilizing 
almost all in-house person- 
nel,” Nagelvoort said. And be- 
cause the banking industry is 
highly regulated, much of the 
information that Hudson Unit- 
ed needs has already been 


higher percentage of funding 

to strategic projects, partly as 
a result of its ability to reduce 
IT maintenance costs through 
offshore outsourcing. 

Rubin said that in the insur- 
ance industry, “we’re seeing 
companies moving along at 
somewhat of a recovery mode 
and investing in IT for future 
growth and to gain a better 


| Customer view.” 


Meta also expects FAC 
manufacturers to 
invest more heavi- 
ly in warehousing 
and distribution 
applications to in- 
crease efficiency 
and tighten links 
with suppliers. 
The forecasts are 
based on an inde- 
pendently funded 
survey of 860 IT managers in 
21 industries. 

Another reason why manu- 
facturers might see a boost in 
IT spending is “the fact that 
they haven’t spent anything 
[on discretionary projects] for 
the past two and a half years,” 
said John Parkinson, chief 
technologist for the Americas 


of expec 


The average total 


IT spending as a 
percentage of revenue 


www.computerworld.com 


| documented for internal and 
external auditors, he added. 

John Hagerty, an analyst at 
AMR Research Inc. in Boston, 
estimates that on average For- 
tune 1,000 companies will 
spend about $2.5 million on 
Sarbanes-Oxley work this 
year. Technology costs repre- 
sent just 5% to 10% of the 
overall tab, Hagerty said, al- 
though that doesn’t reflect the 
cost of the IT-related staff 
time being dedicated to com- 
pliance efforts. 

Hagerty added, though, that 
it’s tough to pinpoint an aver- 
age IT spending figure for Sar- 
banes-Oxley “because it’s in- 
fluenced by organizational and 
systems complexity.” @ 43114 


READ MORE ONLINE 


It's Part of the Job: A panel discusses 
the role of IT managers in Sarbanes-Oxley 
compliance efforts: 


QuickLink a3830 


Special Coverage: For more stories about 
Sarbanes-Oxley issues, visit our Web site: 


QuickLink a3250 
www.computerworld.com 





region at consulting firm Cap 
Gemini Ernst & Young U.S. 
LLC in Chicago. 

In a report released last 
month, Forrester Research 
Inc. predicted that the retail 
and insurance industries will 
see the largest increases in IT 
spending next year. But For- 
rester’s forecasts are relatively 
modest. Analyst Tom Pohl- 
mann said IT 
budgets in those 
two industries 


TOID 


3 82 will likely rise by 


ae Coe 


4.4% and 3.4%, 
respectively. The 
report, funded by 
Cambridge, 
Mass.-based For- 
rester, was based 
on a survey of 
820 IT executives 
in October. 

On the other hand, National 
Grange Mutual Insurance Co. 
in Keene, N.H., plans a slight 
drop in its IT budget. CIO Joel 
Gelb said that improved gov- 
ernance, including the use of 
portfolio management tech- 
niques, has helped the compa- 
ny “focus IT efforts and con- 
trol costs.” @ 42803 
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. 
Lobbying 
said privately that they agreed 
with the general perception 
that such groups are pushing 
political agendas at the cost of 
improved security. 

“ITAA and BSA continue to 
put forth resistance that seems 
based more on visceral than 
logical grounds,” said the 
president of another industry 
consortium that regularly 
deals with these groups. 
“They continue to say that ex- 
ternally defined security re- 
quirements, either from the 
government or users, stifle in- 
novation, which strikes me as 
a classic red herring.” 

Amit Yoran, director of the 
National Cyber Security Divi- 
sion at the DHS, said that in 
his interactions with the ven- 
dor groups co-sponsoring the 
summit, he has witnessed “a 
genuine interest and desire to 
improve the state of cyberse- 
curity.” And while the concern 
about vendor resistance to 
regulation is a valid one, Yoran 
said, vendors are for the most 
part “putting their money 
where their mouths are.” 


| 





“Before advocating specific 
legislative initiatives, they 
want to have a good, clear un- 


| derstanding of the upside and 


the impact of that legislation 
with respect to its effect on in- 
dustry,” said Yoran. “We need 
to make sure we identify how 
they can improve the quality 
of their software, not just hold 
them accountable for doing it. 
We can’t just say that software 
will be more secure because 
we mandate it.” 


Taking Responsibility 
TechNet President Rick White 
said there’s no question that 
cybersecurity is a multifaceted 
problem that the vendor com- 


munity must also take respon- 


sibility for. 

“There’s already a lot of 
pressure on a lot of people to 
deliver the right products and 
minimize problems,” said 
White. “[But] even if we start 
delivering better products to- 
morrow, there’s still going to 
be a cybersecurity problem.” 

The BSA and the Chamber 
of Commerce didn’t respond 
to requests for comment. 

Harris Miller, president of 
the Arlington, Va.-based ITAA, 
dared anyone to match the 
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Ultimately, 

we the con- 
sumers and busi- 
nesses should be 
held responsible. 
If we continue to 
buy Swiss cheese, 
they'll continue to 
sell it. 


KEITH MORGAN, CHIEF OF 
INFORMATION SECURITY, TERRADON 
COMMUNICATIONS GROUP 


ITAA’s leadership on security. 
“If you write anything other 
than that ITAA is the leader in 
identifying the issue of cyber- 
security as a critical issue for 
our economy, our government, 
our society and IT users, you 
would be factually inaccurate,” 
Miller said. 

But the practice of raising 
awareness isn’t what users and 
analysts are questioning. It’s 
the vendor community’s eco- 
nomically driven agenda to 
avoid regulation that would 
increase development costs 
and reduce profit margins, IT 
executives said. 


EMC Taps Database Archiving Tool 
For Its Information Life-cycle Suite 


OuterBay deal gives 
users software for 
migrating old data 
BY LUCAS MEARIAN 

In a bid to shore up a key 
piece of its information life- 
cycle management (ILM) 
strategy, EMC Corp. today will 
announce a software partner- 
ship aimed at letting IT man- 
agers reduce the size of data- 
bases by moving old data to 
other storage devices. 

“T think it fills a hole in our 
ILM strategy, and it’s one of 
the few holes we have left,” 
said Mark Sorenson, EMC’s 
senior vice president of infor- 
mation access and recovery 
software. He added that the 
Hopkinton, Mass.-based stor- 
age vendor plans to introduce 





its first full ILM product suite 
in next year’s first quarter. 
Earlier this year, EMC 
agreed to buy both Legato 
Software Inc. and Documen- 
tum Inc. as part of its effort to 
cobble together an integrated 
set of tools for managing the 
entire life cycle of data. But 
Sorenson said EMC will rely 
on third-party vendors such as 
OuterBay Technologies Inc. in 
Campbell, Calif., to sell users 
database archiving software. 
OuterBay’s LiveArchive tool 
can identify inactive informa- 
tion in databases and relocate 
the data within the same disk 
array or move it to less-expen- 
sive storage, based on policies 
set by users. Although the 
agreement being announced 
today isn’t mutually exclusive, 
EMC said OuterBay will be its 





“preferred vendor” for data- 
base archiving software. 

LiveArchive is being inte- 
grated with EMC’s Control- 
Center storage management 
tools as part of the deal, the 
two companies said. 

Lois Hughes, senior manag- 
er of business applications 
systems at Tektronix Inc., said 
the Beaverton, Ore.-based 
maker of test and measure- 
ment equipment was one of 
the first users to install Live- 
Archive when it was released 
last year. Tektronix has used 
the archiving software to re- 
duce the size of an Oracle 
transaction-processing data- 
base by 56% and has reaped a 
42% increase in I/O perfor- 
mance as a result, she said. 

LiveArchive uses data age 
policies set by Tektronix’s IT 








“I don’t see any of these or- 
ganizations promoting securi- 
ty,” said MacDonnell Ulsch, 
managing director of Janus 
Risk Management Inc. in 
Marlboro, Mass. “They are 
promoting agendas [that] 
don’t make this a more secure 
world.” 

Tom Kellermann, senior 
data risk management special- 
ist at The World Bank in 
Washington, said the approach 
of these groups to avoid regu- 
lation at any cost is an obsta- 
cle to improving security. 
“Legislation or regulatory ef- 
forts will help, but ... there 
are significant lobbying efforts 
by entrenched institutions to 
avoid things that adversely af- 
fect the bottom line,” said 
Kellermann. 


Misdirected Effort 

Buck Fleming, the acting exec- 
utive director of the Cyber In- 
cident Detection & Data 
Analysis Center, a Philadel- 
phia-based volunteer partner- 
ship of more than a dozen IT 
vendors, user companies and 
the FBI’s InfraGard program, 
said the lobbying power of 
some vendor groups is pre- 
venting new ideas from getting 


staff to purge old transactions 
from the Oracle database, 
which runs on a Sun Solaris 
server. The software then adds 
the historical records to a 
copy of the production envi- 
ronment that’s stored in a sep- 
arate database for audit and 
reporting uses, Hughes said. 
“The beauty of it is that it 
maintains your transaction in- 
tegrity, and there’s no user 
training needed because your 
archive environment looks ex- 
actly like your production en- 


TECHNOLOGY DETAILS 


SUPPORTED NOW: 
= Oracle, DB2, SQLServer, 
Sybase and Informix databases 


= Oracle and PeopleSoft apps 


PLANNED ADDITIONS: 

@ SAP and Siebel applications, 
due in first quarter of next year — 
8 Outlook and Notes e-mail 
applications, due by mid-2004 
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an audience on Capitol Hill. 
“We made the mistake of 
spending time, money and 
brainpower coming up witha 
[technical] approach [to im- 
proving security] that we 
thought deserved a hearing,” 
said Fleming, noting that he 
has been unable to capture the 
attention of anyone in govern- 
ment for the past year. “We 
didn’t understand that [the 
money] should have first been 
directed to a lobbying effort.” 
But the vendor lobby is 
playing a risky game, said Alan 
Paller, director of research at 
the SANS Institute in Bethes- 
da, Md., who supports securi- 
ty benchmarks and public re- 
porting. “Eventually, Congress 
is going to realize that indus- 
try is telling them one thing in 
the hearings and another thing 
privately,” he said. 
Consequently, security is 
unlikely to improve anytime 
soon, said Keith Morgan, chief 
of information security at Ter- 
radon Communications Group 
LLC in Nitro, WVa. “Ultimate- 
ly, we the consumers and busi- 
nesses should be held respon- 
sible,” he said. “If we continue 
to buy Swiss cheese, they’ll 
continue to sell it.” @ 43188 


vironment,” she said. 

Carolyn DiCenzo, an analyst 
at Gartner Inc., said the Outer- 
Bay deal won’t turn EMC into 
an ILM software and services 
vendor overnight. But it shows 
that EMC executives “under- 
stand the pieces they need and 
that they are working to incor- 
porate that into their design,” 
DiCenzo said. 

In a related matter, Dell 
Inc.’s top storage executive 
said during a conference call 
with EMC officials that the 





two companies likely will look 
into bundling their hardware 
and software products to cre- 
ate packaged ILM offerings. 
“We believe ILM is the way 
customers want to go,” said 
Darren Thomas, Dell’s general 
manager of storage. Dell re- 
sells EMC’s Clariion line of 
midrange disk arrays under a 
2-year-old deal that has pro- 
duced more than 7,000 instal- 
lations thus far, according to 
| the two companies. @ 43165 
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OPINION 


MARYFRAN JOHNSON 


atisfying Supergeeks 


ID YOU REALIZE,” my daughter asked 
me one day, “that Dad has about 20 com- 
puter keyboards in the basement? What’s 


up with that?” 


Great question, I thought. Too bad I'll never get a 
straight answer. To my eternal chagrin, I’ve found 
that direct inquiries about technology purchases at 


my house always seem to 
end up in dead-end con- 
versations about how 
much I spend on shoes. 
Those of us who dwell in 
the Kingdom of the Su- 
pergeek eventually learn 
to quit asking things like, 
“What was in that big 
box from eBay?” (“Uh, 
nothing for you. Are 
those new shoes?”) 

What some of us never 
learn, alas, is how to stop 
searching for that perfect holiday 
gift for the supertechie who has 
everything (well, as far as we can 
tell, anyway). That’s why I give 
thanks each year for this very issue, 
wherein we publish our “Cool Stuff” 
feature (on page 23, and online at 
QuickLink 42520). Technology 
writer Russell Kay does an out- 
standing job of sorting through this 
season’s lineup of gadgets and giz- 
mos for gift-giving. I may just have 
to buy Russ a Duct-Tape Wallet ($10 
to $30 at www.ducti.com) to show 
my gratitude. 

But rather than stumble down the 
wrong path to the ideal geek gift, I 
decided to test-market some of our 
choices with my No. 1 supergeek. A 
focus group of one, as it were. 

We started with the Duct-Tape 
Wallet, which got an immediate 
ranking of “outstanding!” The only 
drawback, he added, was that “you 
can make your own for about 30 
cents.” Not an unexpected observa- 
tion from a man whose current wal- 
let is a sturdy rubber band holding 
his cash and credit cards together in 
a lump. 


So how about the io 
Digital Pen and Paper 
from Logitech ($199 at 
www.logitech.com)? 
Snort of derision. “For 
$200, I’ll hire someone to 
take my notes for me.” 

Moving on. Would a 
USB watch appeal? 
(These start at $80 and 
are made by multiple 
manufacturers.) Su- 
pergeek looked them 
over and took a pass, 


| concluding as our reviewer did that 


they’re nothing special even with 
the Universal Serial Bus cable. “If 
you're connecting to a computer 
anyway, why doesn’t it set the time 
with NTP? Or pick up the WWV ra- 
dio signals?” he demanded, referring 
to the Network Time Protocol and 
to the national time service out of 


Boulder, Colo. (I pretended the 
question was rhetorical.) 

One oddball selection that held 
surprising appeal was Rivet, a line of 
fasteners for securing cell phones, 
pagers and other road-warrior gear 
to belt clips, shoulder straps or 
dashboards (starting at $20, at 


| www.roadwired.com). “I could see 


using that for all kind of things,” he 
mused, sounding somehow a bit sin- 
ister. (Note to self: I could live to re- 
gret this one.) 

But the truly biggest hit of all was 
the CarChip (starting at $130 at 
www.davisnet.com). This plug-in 
monitoring device for a car’s diag- 
nostic port “may be the ultimate Big 
Brother device with which to tor- 
ment your teenager,” our reviewer 
writes, since it can record trip de- 
tails, including speed and start and 
stop times. “I wish I knew more 
about how to hack the car,” Super- 
geek said dreamily. 

By the time we wrapped up our 
Cool Stuff tour, I had all the vital 
shopping data I needed. All that’s 
left to do now is log on, point, click 
and wait for delivery. 

I’ll just have to hope that Super- 
geek doesn’t already have 19 in the 
basement. @ 43121 
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PIMM FOX 


Novell + 
SUSE = 
Problems 


ONVENTIONAL wis- 

dom about IT vendor 

takeovers is complete- 
ly missing in Novell’s $210 
million cash deal to purchase 
SUSE Linux. That makes me uneasy. 

The bright side of the picture, as 
painted by Novell, is clear. The move is 
a signal that NetWare does have a path 
to the Linux platform. Novell’s pur- 
chase in August of Boston-based Ximi- 
an points in the same direction. Novell 
and Ximian are now working on a way 
for Microsoft .Net applications to run 
on Linux, Unix and Windows and on 
developing a Linux desktop. And, yes, 
this is a real challenge to Red Hat, the 
leading Linux distributor. 

Aside from this emphasis on Linux, 
a $50 million infusion 
from IBM endorses 
Novell’s relevance. 

As Earl Perkins, a 
Meta Group analyst, 
said, “This means 
Novell’s got a dog in 
the hunt.” 

But what kind of 
hunt is it? 

As arule, IT ven- 
dor takeovers aren’t 
easy wins unless 
you're looking at big 
reductions in head count, juicy cus- 
tomer order books or expansion into 
revenue-generating areas such as con- 
sulting services. Those don’t seem to 
be in this deal. Another aspect I find 
troubling is simple geography. This 
deal spans multiple time zones and 
aims to integrate different cultures, 
mirroring the situation in the misfiring 
DaimlerChrysler merger, which seems 
to have benefited only airlines flying 
between Detroit and Stuttgart. 

Linux offers a great IT model for 
users, but the business model for ven- 
dors is unclear. Red Hat made just 
$5 million on sales of $106 million last 
year. SUSE is privately held, so figures 
aren’t available, but if Novell is after 
Linux credibility, why not assemble a 
team of Linux developers to port Net- 
Ware’s administration and manage- 
ment features to the open-source oper- 
ating system? 
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If this is a plan to nab support from 
customers frustrated with Microsoft’s 
licensing policies, great — but that 
isn’t a business strategy. While this 
takeover is the work of new executive 
blood at Novell giddy with new cash in 
the bank, it faces the same hazards as 
previous Novell takeovers, such as 
Unix System Laboratories/UnixWare. 
Indeed, this could be one of those 
deals that’s good for the customer, 
good for the technology, but bad for 
the acquiring company, which fails to 
see the expected money flow in. 

A purchase of Red Hat would have 
positioned Novell as the leader in Lin- 
ux and generated the kind of excite- 
ment that leads to real shifts in market 
value. As it is, SUSE makes out well 
(it’s getting more than $500,000 per 
employee) and Novell buys some 
more time. 

The next couple of years will deter- 
mine whether this is a visionary or 
stopgap move. In the meantime, the 
real moneymaker will be the airline 
that flies the Salt Lake City-to-Nurem- 
berg route. @ 43073 


DAN GILLMOR 


IT Economy: 
Half-Empty, 
And Leaking 


O THE ECONOMY is fi- 

nally improving. But is 

this the real thing — a 
significant, long-lasting re- 
covery — or just a false dawn? 
For IT, the answer to that question 
isn’t trivial. 

The enormous tax cuts have begun 
to make a difference. So has a big 
boost in government spending, notably 
on military and domestic homeland se- 
curity programs. Meanwhile, produc- 
tivity is improving dramatically. It all 
adds up to an economy that, for now, is 
making real strides forward. 

Tech spending seems to be rebound- 
ing a bit. Cisco Systems’ most recent 
numbers, showing stellar improve- 
ment in earnings, suggest that the 
worst may be over. Whether there’s 
significant pent-up demand for IT 
spending (other than IT staff) is anoth- 
er matter; the evidence simply isn’t 
compelling on this point. 

What is compelling is the economic 
danger we face if the U.S. govern- 
ment’s fiscal gambles fail, and if some 


global trends continue. On 
this, the evidence is worri- 
some. 

The recklessness of cur- 
rent fiscal policy is astound- 
ing. President Bush and the 
Republican-controlled Con- 
gress, aided by some De- 
mocrats who would have to 


| hire a detective agency to 


locate their spines, have 
brought back the era of mas- 
sive budget deficits. The red 
ink isn’t all their doing, but 
they’re making the situation 
vastly, dangerously worse. 

The Federal Reserve’s low-interest- 
rate policies, which were needed to 
prevent a real disaster after the implo- 
sion of the tech bubble, have become 
dangerous in their own right. They’ve 
encouraged the continuing inflation of 
a housing bubble that, when it bursts, 
will reverberate much more widely in 
the overall economy than did the Nas- 
daq collapse. 

Speaking of the stock market, why 
are so many tech companies selling at 


| 


such high multiples again? 
Now, eBay is a heck of a 
franchise, but even after a 
recent correction, it was 
still selling at 87 times 


earnings in mid-November. 


Takes your breath away. 
Meanwhile, investors get 
new evidence every day 
that Wall Street keeps rig- 
ging the markets against 
the little guy on behalf of 
the insiders. Under Demo- 
cratic and Republican ad- 
ministrations in the past 
two decades, shafting the small in- 
vestor has not just gone unpunished. 
It’s been policy. And one of these days, 
what’s left of trust in the system will 
evaporate entirely unless true capital- 
ists stand up to save capitalism. 

IT departments have another ten- 
dency to ponder: the rapid decamping 
of jobs away from the U.S. The so- 
called jobless recovery has been noth- 
ing of the sort; it’s just that the new 
jobs are mostly in India, China and 
other places that offer corporate 
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| America a better deal. The financial 
| reasons for this transition are notable, 


| but as we move jobs that require 
| skilled labor to other nations, we may 
| well be undermining our own future. 
Many of Wal-Mart’s employees qualify 
| for government assistance. Is that the 
| kind of American workforce we want 
to create? 
The best news for IT in all this is the 
| equally compelling need for compa- 
| nies and governments to make better 
| use of the resources they have. Some- 
times, waiting is the best policy, espe- 
cially when we know we can catch up 
| quickly; first movers don’t always hold 
the right cards. But we can also wait 
| too long. 
I wish I had more confidence that 
our economy will support what’s need- 
| ed in the long run. We’re borrowing 
against our future, and I’m not sure 
how we're going pay this debt. @ 43071 


| WANT OUR OPINION? 


More columnists and links to archives of previous 
columns are on our Web site 
www.computerworld.com/columns 











Future of Analysts 


HE COLUMN “Businessy IT” 
(QuickLink 42467] is complete 
nonsense. Analysts are a connect- 
ing link between business and 
technology, and they grow on tech- 
nology soil. Eliminating all technolo- 
gy jobs will quickly eliminate all ana- 
lysts. We can see what outsourcing 
already has done; | don’t know one 
high school graduate who plans to 
pursue further education in pro- 
gramming. 
Viadimir Gendler 
Consultant, 
Huntington Beach, Calif. 


Bounty Hunt 


CCORDING to your headline, 

“Experts, IT Managers Say Mi- 
crosoft Should Forget Bounty, Fo- 
cus on Security” [QuickLink 
42619]. Well, experts and IT man- 
agers are wrong. Microsoft has the 
money to do both, and it should. 
Hank Guckes 
Senior technology director, 
Philadelphia 


T SEEMS that no one is recalling 

that many of the exploits being 
used by the virus writers are items 
that have been added to Microsoft's 


NDA 


software at users’ request to en- 
hance interoperability. Many of the 
exploits are not bugs, but features 
of the product that allow program- 
mers, such as myself, to program- 
matically control Office apps and 
the operating system. 

Alex Buttery 

Mount Laurel, N_J. 


HIS BOUNTY IS a public rela- 
tions ploy to divert attention 
from the real problem: Microsoft 
doesn't test and analyze its code 
well enough before it sends it out 
the door. 
Mike Echlin 
Analyst, Deep River, Ontario 


| ‘It’s the GUI, Stupid!” 


F NOVELL has any chance, this is 

it [“Linux Infusion Gives Novell a 
Needed Boost,” QuickLink 42677]. 
The Linux kernel should give it the 
strong application server that it has 


always lacked. 


But Novell still needs to post a 
banner in its developers’ quarters 
saying, “It's the GUI, stupid!” Every 
Novell technical class I've taken has 
had Windows network admins pre- 
sent who praise NetWare’s capabil- 
ities, but whine like stuck pigs 
about the interface. 








We're a typical “last-gasp 
Novell” small business that ulti- 


| mately has to go where our ERP 


vendor goes. Microsoft successful- 
ly stalked this territory with SQL 
Server, and Novell has to win back 
the ERP vendors before it loses the 
likes of us - reluctantly, but for 
good. 

Bill Pratt 

Vice president, MIS, Kinamed 
Inc., Camarillo, Calif. 


Getting Alignment 

S A CONSULTANT working with 

Fortune 500 companies to 
quantify the costs and benefits of IT 
decisions, | have found that there 
are a few areas where a gap be- 
tween IT and business almost al- 
ways exists [“Corporate Execs Try 
New Ways to Align IT With Busi- 
ness Units,” QuickLink 42353}: 

@ The IT executives don’t have 

the financial skills to quantify the fi- 
nancials surrounding the IT project, 


| especially on the benefits side. 


@ The business leaders don't 
have the technical skills to trust that 
the benefits really exist. 

The one thing that can bridge 
this gap is truly objective analysis 


| of the project's cost and benefits, 


but most organizations have a 





hard time doing that analysis. 

The hardest part is understand- 
ing that IT is responsible only for 
implementation and maintenance. 
The business side must be taxed 
with changes in process, culture 
and utilization if any benefits are to 
be realized. 

If the change process takes too 
long, the outlined benefits can 
erode quickly. Benefits don’t start 
accumulating until the whole 
change cycle has taken place, and 
many projects can become obso- 
lete before break-even is reached. 
Kevin Kraft 
Director of sales/sales de- 
velopment, Excipio 
Consulting LLC, Minneapolis, 
kkraft@excipio.net 


COMPUTERWORLD welcomes 
comments from its readers. Letters 
will be edited for brevity and clarity. 
They should be addressed to Jamie 
Eckle, letters editor, Computerworid, 
PO Box 9171, 500 Old Connecticut 
Path, Framingham, Mass. 01701. 
Fax: (508) 879-4843. 

E-mail: letters@computerworld.com. 
Include an address and phone num- 
ber for immediate verification. 


For more letters on these and 
other topics, go to 
www.computerworld.com/letters 
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TECHNOLOGY = 


QUICKSTUDY SECURITY MANAGER’S JOURNAL QUOTE OF THE WEEK 


WiMax Bad Policy Makes | é It occurred to me that soft- 
The 802.16 wireless metropolitan-area network For Weak Passwords ware with the intelligence of a 





to as WiMax, is aimed at making broadband network 
access available without the expense of stringing 
wires or the limitations of DSL. Page 34 


security practices allow too many frightening capacity to launch a new 
weak passwords to linger at Vince form of network-based warfare. 


| 
standard that’s under development, widely referred | MANAGER'S Unclear policies and sloppy mouse or a monkey would have the 
| Tuesday’s company. Page 38 Paul A. Strassmann, columnist, page 41 


Super-Geek 
Specials 


Grand Canyon Display Series + 
MANUFACTURER: Liebermann Inc., Los Angeles 

WEB SITE: www.go-L.com 

PRICE: Starting at $8,500 

Except in a hot dance club or a humongous trade show ex- 
hibit, the most spectacular monitors you're ever likely to 
see are the Grand Canyon Displays. These ultrawide 
screens deliver resolutions up to 25 times better than VGA 
(6,400 by 1,200 pixels), with wide viewing angles, fast 
video response, excellent color fidelity and red-green-blue 
auto-geometry-sensing color correction. Available in 76-, 
81- and 92-in. sizes, with price tags to match: $8,500, 
$12,500 and $17,500, respectively. 


Costantino Perhaps it’s asign ofa revitalize od econ- 
omy. There are gadgets and gizmos 
aplenty for geeks of all ages on your gift 
list. By Russell Kay 
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io Digital Pen > 

MANUFACTURER: Logitech Inc., Fremont, Calif. 

WEB SITE: www.logitech.com 

PRICE: $199 

Lots of computer users still want to write or take notes 

with pen and paper. You may remember from a few 

years ago the CrossPad, which tried to capture such 

jottings in computer-readable form, or the less-than- 

successful IBM TransNote laptop/pad hybrid. And current tablet PCs don't 
cut it for users who don't like the feel of writing on glass. Logitech offers an 
alternative: an electronic pen - a very large one - called the io Digital Pen 
and Paper. For $199, you can take and store up to 40 pages of notes, draw- 
ings and more and download them to your PC, where you can invoke hand- 
writing recognition to hopefully turn your scribbling into editable text. One 
catch: You must use specially formatted paper, which is available in the form 
of pads, notebooks, graph paper and yellow Post-it notes. 


The Duct-Tape Wallet « 
MANUFACTURER: Ducti, Monument, Colo. 
WEB SITE: www.ducti.com 
PRICE: $10-$30 
Duct tape is the ultimate in low tech - which gives it, paradoxically, a 
lot of high-tech appeal. Ducti makes wallets and checkbooks from 
specially engineered duct tape that won't lift, peel apart, get sticky or 
crud up with lint from your pocket or purse. According to reseller 
ThinkGeek.com, “These durable and well-constructed duct tape 
wallets are great for all programmers, but Perl coders might enjoy 
them the most.” 


Ambient Orb 
MANUFACTURER: Ambient Devices Inc., Cambridge, Mass. 
WEB SITE: www.ambientdevices.com 
PRICE: $150 
It doesn't really do anything, but it's curiously compelling. 

The Ambient Orb is a lighted sphere of frosted glass that slowly changes 
among thousands of colors to reflect vagaries of the weath- 
er, the state of the stock market, whether your boss is 
online or other conditions. You plug the Orb into a 
110-volt outlet, and it’s automatically up and running 


Music to 
My Ears 


Dell’s DJ Digital Jukebox + 
MANUFACTURER: Dell Inc. 

WEB SITE: www.dell4me.com 

PRICE: Starts at $249 

The best competitor yet to Apple 

Computer Inc.’s iPod, Dell's 

new Digital Jukebox comes 

with a 15GB or 20GB hard 

drive and a battery good 

for 16 hours of MP3 or 

Windows Media Audio lis- 

tening. The interface isn’t as 

nice as iPod's, but at $249 or $299, it's much 
cheaper, and its glowing blue dial and buttons 
look cool in the dark. Taking another cue 

from Apple, Dell has hooked up with a 
99-cents-per-song download service. 
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on a nationwide wireless network - no connection to a PC or 
the Internet is required. You can select your Orb's channel via a 
Web interface, and it will be updated regularly, perhaps as often as 
every few minutes. Out of the box, the Orb reflects the Dow Jones In- 
dex, glowing green to indicate prices up, red when they're down, yellow 
when things are calm. If there's a change of more than 1.5%, the Orb pul- 
sates. Some weather and stock reports are free, and others are available at 
extra cost. A developer interface lets Web programmers control the color of 
their Orbs with a simple HTTP “get” call. 


USB Watches > 

MANUFACTURERS: Laks Watch Co., Vienna, 

Peripheral Enhancements Corp., Ada, Okla., 

and others 

WEB SITES: www.laks.com, 

www.peripheral.com 

PRICE: Start at $80 

Pull out the Universal Serial Bus cable at- 

tached to your wristwatch strap, plug it into 

your computer and watch people's eyes bug out. Actual- 

ly, it's just a normal quartz-movement watch with one extra - a built-in flash 
memory chip, available in models that hold up to 256MB. The memory works 
fine, and the stowaway USB cable is handy, but as a watch, it’s nothing spe- 
cial - it only tells time. An included USB extension cable makes it a little eas- 
ier to connect to your computer without unbuckling the strap or risking 
carpal tunnel problems. 


Aura Workstation 
MANUFACTURER: Poetic Technologies, Montreal 
WEB SITE: www.poetictech.com 
PRICE: Approximately $5,000 
If money's no object, and you want to spend the most and highest-quality 
time with your computer, look into the Aura workstation from Poetic Tech- 
nologies. This all-in-one workplace environment is essentially self-contained 
with respect to lighting, air circulation, heating (optional) and power distribu- 
tion. The seat can be adjusted in seven ways, and all 
work and seating surfaces can be moved. Aura 
can handle up to four monitors. The entire unit 
rotates automatically, if desired, to help pro- 
vide the best views or follow changes in natur- 
al lighting. 


DigitalMovie, 
Digital Vinyl CD-R + 
MANUFACTURER: Verbatim Corp., Charlotte, N.C. 
WEB SITE: www.verbatim.com 
PRICE: $4 for DVD blanks, $13 for 10-pack of CD-R 
If you're like me, you're burning a lot of CDs these days, 
whether for backup or for music compilations. And if you like 
to fool with home video, you're probably storing your movies on 
DVDs so you can watch them on your television. Verbatim has some new 
products for us all: blank CD-R disks that look like 45-rpm records (remem- 
ber records?) and CD-Rs with blank labels that can be printed on by ink-jet 
printers, as well as blank DVD+Rs that look like film reels. DigitalMovie DVD 
blanks run about $12 for a three-pack, while Digital Vinyl CD-Rs are $13 per 
10-pack. 


Nero 6 Ultra Edition 
MANUFACTURER: Ahead Software Inc., Glendale, Calif. 
WEB SITE: www.nero.com 
PRICE: $99 (or $69 via download) 
I've used Ahead Software's Nero Burning ROM soft- 
ware to burn CDs for years. The newest release, Nero 6 
Ultra Edition, has expanded and integrated capabilities, 
Continued on page 25 
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Phone Fun 


Rivet > 


Continued from page 24 

making it easier and quicker than ever to create or copy 
music discs, photos, data backups and now DVDs. This 
all-in-one solution includes applications to edit audio 
and video; mix multiple audio tracks like professionals; 
watch VCD, SVCD and DVD movies; listen to music: de- 
sign covers; and optimize your drive’s performance. 


Radio YourWay > 

MANUFACTURER: PoGo Products Inc., Brea, Calif 
WEB SITE: www.pogoproducts.com 

PRICE: $150 or $200, depending on memory capacity 
For decades, we've been able to set up video recorders 
to turn on at preset times and record programs for us 
automatically. But until now, there has been no product 
that does the same for radio, even though it’s a much 
simpler process. Radio YourWay is a small MP3 player 
containing an AM/FM radio with a programmable solid- 
state recorder. The unit holds up to 4.5 hours of com- 


Pictures and 
Movies 


Exilim EX-Z4U « 

MANUFACTURER: Casio Inc., Dover, N.J. 

WEB SITE: http://exilim.casio.com 

PRICE: Under $400 

Casio's Exilim EX-Z4U is one of the smaliest digital cameras on the market, 

but it's loaded with features. The size of a credit card and under 1 in. thick, 
with 4-megapixel resolution, this camera fits into a docking station 
so that, sensibly, the LED viewscreen, not the lens, faces you. The 
EX-Z4U has a 3X zoom lens and sells for under $400, with dock. 
Best of all, there's just a 0.1-sec. lag time after you press the shut- 
ter until it takes the picture - far faster than most digital cameras. 


DVD Movie Writer DC3OOO > ¢ 
MANUFACTURER: Hewlett-Packard 

WEB SITE: www.shopping.hp.com 

PRICE: $399 


pressed audio in its 32MB of internal memory and up to 
36 hours with add-in Secure Digital memory cards. With 
the included USB cable, you can transfer files to and from 
your PC and store MP3 files to Radio YourWay. Did | men- 
tion that it also has a voice recorder? 


SA100 Mini-MP3 

MANUFACTURER: Auvi Technologies, St. Charles, Mo 
WEB SITE: www.auviworld.com 

PRICE: Starts at $50 

It looks like a USB thumb drive, but it also plays MP3 au- 
dio. The SA100 is about the size of a thumb, 3.5 in. by 1.1 
in. and just 0.9 in. thick. Available in 64MB, 128MB and 
256MB versions, the portable digital audio device runs on 
one AAA battery for up to six hours of music playback. It 
includes two LED indicators and an equalizer that can be 
preset to five settings. its firmware is upgradable via a 
USB port 


Photosmart 945 »s 
MANUFACTURER: Hewlett-Packard Co 
WEB SITE: www.shopping.hp.com 
PRICE: $550 

The Photosmart 945 is HP's biggest 
and best digital camera to date, 
offering 5.3-megapixel resolution 
with an 8X opticai zoom lens. The 
optional camera 

dock allows easy 

sharing of photos to 

computer or printers 

and recharges the 

batteries 


When it's time to edit your vacation movies and put them on DVD, you might want to use 
Hewlett-Packard’s new DVD Movie Writer DC3000. This external DVD writer has a built-in 
analog capture card that lets you easily transfer home videos directly from tape to a digital for- 
mat. The unit comes with a full suite of software to enable video editing along with photo, music 
and data applications, and it lets you write and read CD-R, CD-RW and DVD+R/+RW discs. 


Treo 600 > 


MANUFACTURER: Handspring Inc. 


Mountain View, Calif. 


WEB SITE: www.handspring.com las a 


FN a ae 


MANUFACTURER: RoadWired, Henrietta,NY. # 
WEB SITE: www.roadwired.com = 
PRICE: Starts at $20 


How to carry that slick new cell phone? Cases are so last year. What you want is Rivet, a line of inter- 


changeable fasteners developed in Australia. The modular system can be used as a belt clip or a 
dashboard mount or attached to a shoulder strap. All components are machined out of aircraft alu- 
minum and stainless steel. You attach a steel pin to your phone or camera with high-strength adhe- 
sive, then clip it into the Rivet e-Clip's spring-loaded top entry gate. To release, push a button. The 
Micro Clip - intended to be as much fashion accessory as carrying solution - is a tiny, bullet-shaped 
capsule with a sliding cover that accepts the same pins and attaches to a chain. 


PRICE: $500 
With its sleek styling, decent thumb key- 
board, well-thought-out dialing software, 
built-in digital camera, improved Web brows- 
er and bright screen, Handspring’s newest 
smart phone/PDA combo is likely to be the 
No. 1 item on many people's lists this year. The 
Treo 600 uses the latest version of Palm OS. 
And though only slightly smaller than its pre- 
decessor, it's easier to store. 

Continued on page 28 
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les not like anything you've ever seen in the 
workplace. In this case, the words “radically 
simplifying the way you work” actually apply. 

It starts with the rather obvious — but generally 
ignored — notion that your business is unique. 
Enter the Canon imageRUNNER’ with something 
totally unheard of — customization. By that, 

we mean you can have applications created for 
imageRUNNER that meet the unique needs 


of your business. After all, until now, machines 


Canon tmageRUNNER 


offered generic choices: copy, print, fax, scan... 
But businesses aren't generic. Hence, Canon 
imageRUNNER can be tailored to meet many 
of your business’ unique needs. Of course, we're 
merely scratching the surface. The possibilities 


are as vast as the business activities that lie 


@y Reaey to copy 


100% Auto 


Orect Copy Ratio Paper Select | 
» | . 


Feater | Teese | 
> |mseeee 


A siisne nts 


Please select report 


Sales by Product 


az Sales by Product Category 


Seles by Customer 


Sales by Sales Representative 


With the Canon imageRUNNER, you can have customized 


applications that meet the unique reeds of your business 


before you. And remember, you're eliminating 
time-consuming steps from the workflow process, 
making it simple and efficient. All of which makes 
using imageRUNNER extremely cost-effective 

In short, we've seen the future and it’s called the 
customizable Canon imageRUNNER. You're 
invited to see it too. That is, if you're ready to 


stop doing business as usual. 


Canon know How 


Canon and Canon Know How are registered trademarks of Canon Inc. IMAGERUNNER is a registered trademark of Canon Inc. in the U.S 
and Canada. IMAGEANYWARE is a service mark of Canon U.S.A., Inc. ©2003 Canon U.S.A., Inc. Product shown with optional accessories. 
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Continued from page 25 


Updating Your 
Home Office 


iGo Desk + 

MANUFACTURER: Rain Design Inc., San Francisco 

WEB SITE: www.igo4mac.com 

PRICE: $500 (sitting), $600 (standing) 

If you're a Macintosh aficionado, you're likely superconscious about style issues 
Here's the iGo, a desk that complements the futuristic styling of your iMac. Rain 
Design has created this avant-garde work environment in two heights - one for 


use while you're sitting, and another for standing. & \ 
— a” = 
eee ~=KidzMouse + 3 >) 
‘ gn SS = MANUFACTURER: KidzMouse Inc., San Mateo, Calif. VS S 
~~ WEB SITE: www.kidzmouse.com = I ety | 
Fated PRICE: $21 (ball), $26 (optical) aoe LAV\| 
KidzMouse makes a line of child-friendly mice that come ee ‘ 
in colorful character designs, including some licensed : 
from Disney, Nickelodeon and Sesame Street. Designed F \ \ 
by a grandmother for her 4-year-old granddaughter, this = 
mouse is half the size of a conventional computer mouse, with 
a rounded shape that fits growing hands. Instead of the traditional mouse 
buttons, the KidzMouse has a squeezable “head” that covers the front third 
of the device. If you're a grown-up with small hands, you might find this a 
comfortable alternative to a normal mouse. 


Mirra Chair « 
MANUFACTURER: Herman Miller Inc., Zeeland, Mich 
WEB SITE: www.hermanmiller.com 

S 


& 


On the Go 


UX50 Personal 

Entertainment Communicator » 
MANUFACTURER: Sony Electronics e-Solution Co 

Woodcliff Lake, N.J 

WEB SITE: www.sonystyle.com 

PRICE: $700 

The UX50 Personal Entertainment Communicator is a hand- 

held device with afterburners. It features a 480-by-320-pixel 
landscape-mode display in a clamshell case, built-in Wi-Fi and 
Bluetooth, a built-in VGA digital camera and the Palm OS 5 op- 
erating system. What else? An MP3 player, a voice recorder, a 
video recorder and Memory Stick Pro cards for add-on storage. The 
display swivels and folds down, and you can use it in touch-screen mode. 
The wide-screen design provides more room for the keyboard. 


FlashFolio ¢ 

MANUFACTURER: RoadWired 

WEB SITE: www.roadwired.com 

PRICE: $30; $60 in leather 

Removable storage devices used to be a nuisance 

because they were so big. Now they're a nuisance 
Continued on page 32 





Faster than Verizon. 
Faster than Sprint PCS. 
Faster than Cingular. 
Faster than T-Mobile. 
Faster than Nextel. 


BSE 


For the fastest way to open large e-mail attachments on 
a national wireless network, switch to AT&T Wireless. 


reachout ZSjAleTWireless 


e wireless servit 








The Unwired Office 
starts here. 
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To see a list of the top technology and 
management books of 2003, go to: 
QuickLink 42969 


Reviews of more technology can be 
found at our Web site: 


QuickLink 43102 
www.computerworld.com 
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Continued from page 28 

because they're so small. With new formats proliferating, thumb- 
nail-size cards offering up to 1GB of storage and hard drives 
hardly bigger than postage stamps, it’s all too easy to lose these 
devices or take the wrong one with you. RoadWired’s FlashFolio 
comes to the rescue. It has 20 pocketed compartments (all with 
Velcro fasteners), plus an index card. This case uses Lucent 
Technologies Inc.'s patented polymer Corrosion Intercept tech- 
nology, which reacts with and neutralizes corrosive gases that 
can tarnish metals and degrade or damage electronics. 


GME224M32 

Wireless Mini Mouse > 

MANUFACTURER: |Ogear Inc., Irvine, Calif. 

WEB SITE: www.iogear.com 

PRICE: $50 

You can slim down your travel kit a little with IOgear's new wire- 
less optical minimouse, a peripheral that stores 32MB of data in 
its built-in flash memory. With 800-dpi resolution, this mouse re- 
quires less wrist movement than most, an advantage for travel- 
ers working on airline tray tables. A retractable cable, an on/off 
switch and a carrying case simplify storage and eliminate tangled 
wires. 


FlyFan ¢ 
MANUFACTURER: Kensington Technology Group, San Mateo, Calif. 
WEB SITE: www.kensington.com 
PRICE: $20 
You know what it's like on those full-to-capacity cross-country flights 
when the plane’s air conditioning isn’t up to the job. Now you can do 
something about it. Kensington’s FlyFan will stir up some coolth for 
you. It's a small personal fan that plugs into your laptop’s USB port. 
List price is $20, but you can often find it under $10. 


Lapworks Laptop Desk 

MANUFACTURER: Lapworks Inc., Rancho Cucamonga, Calif. 

WEB SITE: www.lapworksinc.com 

PRICE: $50 

Sometimes, like when you're in an airport terminal, you'd like just a little bit 
of hard surface to put your laptop on. Here's a portable unit that fits that bill 
neatly, with an ergonomic “desk” that sets at several angles, an add-on 
mouse pad and a swivel base. And when your flight is called, you can fold it 
up quickly and stow it in your briefcase. 


Palm Tungsten T3 (shown with 

Accessory Keyboard) + 

MANUFACTURER: Palm Inc., Milpitas, Calif 

WEB SITE: www.palmone.com 

PRICE: $400 

The best-ever Palm handheld features a brilliant high-resolution display ex- 

pandable to 480 by 320 pixels and viewable in landscape or portrait mode. 

The T3 has a built-in voice recorder and MP3 player, plus a photo and video 

_—\_ viewer. And it can work with Microsoft Office docu- 

ments. Take along Palm's $99 Power To Go device, 
and you can recharge your Palm on the run without 
an outlet 


www.computerworld.com 


Cyber Tool 41 

MANUFACTURER: Victorinox 

WEB SITE: http://www.swissarmy.com/webstore/moreinfo.cfm? 
product_id=1589&category=39 

PRICE: $95 

From Victorinox, maker of the Swiss Army Knife, the $95 Cyber Tool 41 
is a 41-function pocket knife that includes a DIP switch setter and a set 
of Torx and PosiDrive bits along with the more traditional scissors, pliers, 
corkscrew and can opener. 


Protection 


Armor 3600 » 

MANUFACTURER: Otter Products LLC, 

Fort Collins, Colo. 

WEB SITE: www.otterbox.com 

PRICE: $100 

If you're going to be carrying your hand- 

held device in swamps, war zones or other 

places that aren't friendly to consumer elec- 

tronic devices, consider the Armor 3600 ruggedized, waterproof case. 
This accessory fits most handhelds, allowing full use of the touch screen 
via a recessed, clear plastic membrane. It also features waterproof cable 
connections for external accessories, an outside stylus holder and an 
adjustable hand strap that's easy to use with gloves on. 


CarChip 

MANUFACTURER: Davis Instruments Corp., Hayward, Calif. 

WEB SITE: www.davisnet.com 

PRICE: Starts at $130 

This may be the ultimate Big Brother device with which to torment your 
teenager. CarChip is a device the size of a 9-volt battery that plugs into your 
(1996 or later) car's diagnostic port, which records data whenever the car 
is started. CarChip automatically records trip details, including speed, start 
and stop times, and distance traveled. You can unplug CarChip and upload 
its information to a PC. In addition, CarChip can create an accident log, 
which documents the 20 seconds before an accident. €9 42520 





Kay is a Computerworld contributing writer in Worcester, 
Mass. You can reach him at russkay@charter.net. 








ODDS ARE JUST ONE 
REMOTE OFFICE CAN BRING 
YOUR ENTIRE NETWORK 
CRASHING DOWN. 


Beat the odds with Trend Micro. 


Finally, a way to control and configure remote offices from a central location. 
Introducing Trend Micro” Gatelock™ 3000/5000— the ultimate security appliance 
from the global leader’ at the gateway. Featuring firewall, VPN, and antivirus 
capabilities in one easy to deploy solution, it will help you eliminate security 
threats, reduce costs, and revel in a state of utter calm. 


For a free evaluation, call 1.888.58.TREND 


or go to www.trendmicro.com 





34 COMPUTERWORLD December 1, 2003 


DEFINI 


TECHNOLOGY 


ION 


WiMax is the popular name of the 802.16 
wireless metropolitan-area network stan- 
dard that’s currently being developed. 
WiMax, which will have a range of up to 31 
miles, is primarily aimed at making broad- 
band network access widely available 
without the expense of stringing wires (as 
in cable-access broadband) or the distance 
limitations of Digital Subscriber Line. 


BY RUSSELL KAY 
INCE THE TURN Of the millenni- 
um, wireless networks have 
proliferated. Wi-Fi, the popular 
term for the capabilities created 

by a group of standards from the Insti- 

tute of Electrical and Electronics Engi- 


neers Inc., has freed us to move around | 


our offices and many public places 
with our laptops and handhelds, yet 
still have instant, unencumbered ac- 
cess to our companies’ intranets and 
the Internet. 
WiMax (Worldwide ae 
for Microwave Access) is the 
next step on the road to a 
wireless world, extending 
broadband wireless access to 
new locations and over longer 
distances, as well as signifi- 
cantly reducing the cost of 
bringing broadband to new areas. 
Among the promises of WiMax is 
that it could offer the solution to 
what’s sometimes called the “last- 
mile” problem, referring to the ex- 
pense and time needed to connect in- 
dividual homes and offices to trunk 
lines for communications. WiMax 
promises a wireless access range of up 
to 31 miles, compared with Wi-Fi’s 300 
feet and Bluetooth’s 30 feet. 


802.What? 


The popularity of wireless networking 
has grown very quickly because of ef- 
fective standardization. Wi-Fi encom- 
passes a family of specifications within 
the IEEE 802.11 standard [QuickLink 
27922]. These include 802.11b (the 
most popular, at IIMbit/sec., with a 
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| typical range of up to 300 feet), 802.lla 
| (S4Mbit/sec., but at a shorter range 


than 802.lib) and 802.llg (combining 
the speed of “a” with the range of “b”). 
WiMax is the new shorthand term 


| for IEEE Standard 802.16, also known 


as “Air Interface for Fixed Broadband 
Wireless Access Systems.” It’s been de- 
signed from the beginning to be com- 
patible with European standards — 


| something that didn’t happen with 


802.lla and delayed its adoption. 

The nonprofit WiMax Forum was 
established in 2001 by Nokia Corp., En- 
semble Communications Inc. 
and the Orthogonal Frequency 
Division Multiplexing Forum. 

The WiMax Forum aims to 
support wireless metropolitan- 
area networking products 
based on 802.16, much as the 
Wi-Fi Alliance has done for wireless 
LANs and 802.11. 

The organization has most recently 
been working on standards certifica- 
tion and interoperability testing. In 
2003, Intel Corp. became a major sup- 


| porter of the WiMax Forum. 


The initial version of the 802.16 stan- 
dard, approved by the New York-based 
IEEE in 2002, operates in the 10-to-66- 
GHz frequency band and requires line- 
of-sight towers. 

The 802.16a extension, ratified in 


| March 2003, doesn’t require line-of- 


sight transmission and allows use of 
lower frequencies (2 to 11 GHz), many 
of which are unregulated. It boasts a 
3l-mile range and 7OMbit/sec. data 
transfer rates that can support thou- 
sands of users. 


| Vendors have held interoperability 
forums, and the first commercial prod- 
ucts are expected to appear on the 
market next year. 

Additional 802.16 standards are in 
the works; here’s what they’ll cover: 

802.16b — Quality of service 

802.16c — Interoperability, with pro- 
| tocols and test-suite structures 

802.16d — Fixing things not covered 
by 802.llc, which is the standard for 
developing access points 

802.16e — Support for mobile as 
well as fixed broadband 


Technology Considerations 
The overall concept of metropolitan- 
area wireless networking, as envi- 
sioned with 802.16, begins with what’s 
called fixed wireless. Here, a backbone 
of base stations is connected to a pub- 
lic network, and each base station sup- 
ports hundreds of fixed subscriber sta- 
tions, which can be both public Wi-Fi 
“hot spots” and firewalled enterprise 
networks. The base stations would use 
the Media Access Control layer de- 
fined in the standard — a common in- 
terface that makes the networks inter- 
operable — and would allocate uplink 
and downlink bandwidth to sub- 
scribers according to their needs, on 
an essentially real-time basis. 

Later in the development cycle, with 
802.16e, WiMax is expected to support 
mobile wireless technology — that is, 
wireless transmissions directly to mo- 
bile end users. This will be similar in 
function to the General Packet Radio 
Service and the “one times” radio 
transmission technology (1xRTT) of- 
| fered by phone companies. 
Intel has now promised WiMax 
| versions of its Centrino chip set for 
2004, whereas Nokia says it will have 
battery and other technical issues 
solved in time to launch a WiMax cell 
phone in 2005. 

Following on the heels of WiMax is 
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another standard, IEEE 802.20, which 
addresses wide-area wireless networks 
and is currently under development; 
no products supporting 802.20 are ex- 
pected before 2006. 


The Promise 
The Washington-based Cellular Tele- 
communications & Internet Associa- 
tion reports that in 2000, there were 
upwards of 109 million cellular sub- 
scribers — compared with 58 million 
residential wired telephone lines (ac- 
cording to U.S. government data). If we 
consider that part of the telecommuni- 
cations industry to be an indicator of 
what’s to come in data networking, it’s 
likely that in a few years, much of the 
Internet’s traffic will be carried over 
the air via WiMax and its descendants, 
not over copper wires or optical fiber. 
Visant Strategies Inc., a market re- 
search firm in Kings Park, N-Y., pre- 
dicts that WiMax product sales will 
reach $1 billion by 2008. According to 
Oyster Bay, N.Y.-based ABI Research, 
the market for long-range wireless 
products based on 802.16 and the 
forthcoming 802.20 standard will 
reach $1.5 billion by 2008. @ 42899 





Kay is a Computerworld contribut- 
ing writer. You can reach him at 
russkay@charter.net. 


LEARN MORE ONLINE 


For a list of online resources related to WiMax, 
visit our Web site 


QuickLink 43072 
www. computerworld, com 








Are there technologies or issues you'd like to to 
learn about in QuickStudy? Send your ideas 
to quickstudy@computerworld.com 


To find a complete archive of 
our QuickStudies, go online to 
@ computerworld.com/quickstudies 





The right management can put you in control of your infrastructure, 
not the other way around. 


Unicenter 


YO 
help contro! c em you to go more wit 
so your IT and business priorities are 
your IT environment, so your infrastructure 


or to get a white paper, go to ca.com/infrastructure. 
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IBM eServer™ xSeries® systems are packed with support that’s substantial. Real. And yes, supportive. Just what the 
on demand world demands. In fact, if you need us, we can be there — 24/7/365: And just about every xSeries server 
is equipped with IBM Director, a systems management tool that, among other things, allows you to manage your 


infrastructure remotely in real time, even while your applications are running. Very supportive. For more information 
on the xSeries systems, visit ibm.com/eserver/advantage 


Why are our Intel’ processor-based server sales the fastest-growing in the world?® Here are 5 reasons 


Scale 1-16 way with select IBM Director systems 


Linux-ready through 
models. Pay as you grow. management. 


Mainframe-inspired 
the entire line. 


24/7/365 optional onsite 
technologies. 


hardware support 


a 


cL 


IBM eServer xSeries systems are powered by 
© S erver Intel? Xeon™ processors and backed (and backed 
and backed) by IBM! 
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Bad Policy Mak 


For Weak Passwords 


| cessor forced the IT support 


Easily guessed passwords and sloppy 
security practices leave end-user accounts 
vulnerable to attackers in more ways than 


one. By Vince Tuesday 


T’S UNPROFESSIONAL to 

break down and sob during 

a meeting, but I came pret- 

ty close a few times this 
week as I finally began to un- 
derstand the details of the IT 
security systems and process- 
es my new company uses to 
protect itself. 

I’m fairly new here, so 
there’s a lot I still 
don’t know. But it 
wasn’t long before it 
became clear to me 
that things are deeply 
wrong. It seems like 
every week, I uncover 
layer upon layer of 
seemingly minor issues that 
undermine a lot of what we do. 

This week, it was pass- 
words. The main problem is 
that they’re easily guessed and 


frequently shared. My security 


team continually tells users 
that they must pick strong 


passwords and not share them. 


But we’ve been unclear with 
users about what counts as a 
strong password because we’ve 
been unsure about it ourselves. 

Most computer systems 
store a one-way encrypted 
password in a database. When 
you attempt to log in, they en- 
crypt what you type and com- 
pare that to the stored value. 
If both match, the system logs 
you in. 

If an attacker can connect 
to a server, he can attempt to 
guess the password by just 
trying various words; pass- 
word, secret and jamesbond 
are favorites. But if an attacker 
can steal the encrypted list or 
password file, he can launch a 
more insidious attack. Instead 
of connecting to the server — 
a slow and sometimes detect- 


anata tata 
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| able process — he can take a 

| dictionary of common words 

| and encrypt them using the 

| same process as the server and 
| store each in a lookup table. 


If an attacker wanted to 


| break into more than one op- 

| erating system, he’d need one 

| table for Windows servers and 
three for the three main kinds 


of Unix. Then, once 
he’d stolen the en- 
crypted passwords, 
he could just look in 
the table and see 
which word each 
matched. 

A hacker launch- 
ing an online attack is likely to 
make a few hundred guesses 


before he’s spotted or moves 
on. But an off-line attack can 


cover hundreds of thousands 
of passwords every second. 
The problem is that operat- 
ing systems’ core method of 
storing passwords hasn’t 


changed for many years, but 
the speed of computers has 
increased thousands of times. 


My security team 
continually tells 


| users that they must 


pick strong pass- 
words and not share 
them. But we’ve 
been unclear about 
what counts as a 
strong password. 








It has reached the point where 
if your encrypted Windows 


| password file is stolen, even a 
low-end hacker has enough 


computing power to break it 


| in a few days. 


It would be nice to be able 
to make sure that nobody can 


| access our password file and 
| to teach our users not to pick 
| the top 100 risky passwords 


that a hacker might use in an 
online attack. 


| Dire Situation 


My predecessors spent many 
thousands of dollars on crack- 
ing software and hardware to 
test the strength of passwords, 


| and they found that about 15% 


of the passwords used in my 
company are weak. This is ac- 


| tually lower than the industry 
| average, which shows just how 
| dire the situation is in the fi- 

| nancial services industry. 


But had a lot of work been 


| done to find and educate the 


users with bad passwords? No. 


| Some grand schemes had been 
| discussed about replacing 
| passwords or improving oper- 


ating systems so that only good 
passwords could be chosen, 


| but nothing was ever delivered. 


The result: In addition to 


| allowing those bad passwords 


to be in use, my department 
was also running a computer 
that had a duplicate, unen- 


| crypted list of all of those bad 


user accounts and passwords. 
If someone had stolen that list, 
we'd have done the hard work 
for them! 

So this week, I began asking 
team members to call groups 
of users with weak passwords 
and discuss better password 
choices. It turns out that most 
of the users we’ve called so far 
weren't using those accounts 
and didn’t know they had 
them. At least we can now 
delete them. 

We may have done only half 
the job with passwords, but in 


| other areas, we’ve done a job 
| and a half. For example, when 


| computer, we use a utility to 


| teams to use a different floppy 
| for each target machine, write 
| alog of the actions back to 


| two machines, but after we 
| conducted a disaster recovery 


| chines had to be wiped and 
| ery services vendor, we found 


| ing the log data on all of those 





| pany when members of the 

| support team finally admitted 
| that they didn’t like producing | 
| the logs and had just been giv- | 


‘ : 
ancient log entries on them. 


| them because they weren't 


| wiped clean. 


| good passwords and establish 





my team and I dispose of a 


wipe the disk clean. We over- 
write every part of the disk 
with a string of zeros. But the 
tool we use is slow and must 
run from a floppy disk. 

For some reason, my prede- 


each floppy and then bring 
them to the security team to 
be checked. 


This works fine with one or 


test where hundreds of ma- 
returned to the disaster recov- 
that creating and then check- 


floppies was a huge waste of 
time. Nonetheless, it took a lot 
of convincing for everyone to 
follow a new process based on 
more trust in the support team. 
I knew I was in a new com- 


ing the security staff the same 
floppies after each test with 


My staffers had never caught 


checking. Everyone was just 
going through the motions. 
It’s nice to find a process 
that takes less time for the 
support teams and less time 
for my group and actually 
ends up with disks being 


I’m sure these won't be the 
last problems I encounter, but 
if I can ensure that we have 


realistic policies that get fol- 
lowed, then I think we can im- 
prove the level of protection 
around here. D 


WHAT DO YOU THINK? 


This week's journal is written by a real 
security manager, “Vince Tuesday,” whose 
name and employer have been disguised 
for obvious reasons. Contact him at vince 
tuesday@hushmail.com, or join the dis- 
cussion in our forum: QuickLink a1590 


To find a complete archive of our 
Security Manager's Journals, go online to 





@ computerworld.com/secjournal 


www.computerworld.com 
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Security Bookshelf 
Firewalls and Internet Securi- 
ty: Repelling the Wily Hacker, 
Second Edition, by William R. 
Cheswick, Steven M. Bellovin 
and Aviel D. Rubin; 

2003. 

The book isn't 

about firewalls 

so much as itis 

about the authors’ 

philosophy of 

computer security 

and the distillation of their 
many years of hard-earned 
experience. Every page shines 
with nuggets of information, 
and every bit of advice is 
backed up with references 
and examples. 

My only complaint is that 
the authors don’t cover the 
importance of compromise 
enough. They clearly describe 
a vision of the right way to 
run Internet systems, but not 
everyone can do everything 
the right way. Sometimes 
good enough has to be enough. 
That said, without the know!- 
edge that there is a right way 
and that this team has reached 
that nirvana, there would be 
no hope to keep us mere 
mortals moving in the right 
direction. 

- Vince Tuesday 


LAN Access-Policy 
Appliance Debuts 


InfoExpress Inc. announced 
CyberGatekeeper LAN, an 
access-policy enforcement 
appliance for LAN-attached 
users. The appliance enforces 
policies created with the 
Mountain View, Calif.-based 
vendor's CyberGatekeeper 
Policy Manager software. It 
works with LAN switches to 
segment users from the cor- 
porate LAN, checking work- 
stations for correct configura- 
tions and up-to-date patches 
before allowing access. 
CyberGatekeeper LAN can 
also automatically provide 
needed updates to users 
whose machines are out of 
date. The offering is expected 
to be available by late Janu- 
ary. Pricing starts at $10,000. 





lronic how it takes the cutting edge 


technology of 2003 to access the 
cutting edge technology of 1973. 


myEXTRA!™ Smart Connectors let you leverage your existing legacy data and logic 


“Cutting edge” doesn’t cut it. You need products 
that do what they say they will do. This is what 
we say: Our myEXTRA! Smart Connectors give you 
XML-based Web services — they let you get at legacy 
information without changing host applications 
You can put all of the business data and applica- 
tions locked up in mainframes to new use in hours 
or days, not weeks or months. We've spent the last 
18 years making legacy data more useful. Smart 
Connectors are the logical next step, making data 


easier to get at. 


Find out more. Download our free White Paper 
“Leveraging Legacy Applications to Serve New 
Business Initiatives” at www.attachmate.com/SC7. 


attachmate 
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the Future of IT 


Strategic problem-solving and peer networking with the nation’s IT leaders 


Bina i 


EVP & CIO 
Ngee cess 


First Vice President 

Chief Information 
Security & Privacy Officer 
Merrill Lynch 
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Conference sessions will cover these critical areas: el rat a 
¢ Extending Data Management, Enterprise Integration and Web Services 


¢ Creating a Next-Generation Infrastructure, Reducing Complexity 
and Enhancing Business Value = een 


¢ Charting New Directions in IT Governance, Regulatory Compliance Goo 
and Project Leadership 


¢ Advancing Security and Business Continuity 


Computerworld’s Premier 100 IT Leaders Conference is a dramatically different, high 


impact executive event. Now in its 5th year, this annual conference brings together mage to a 
hundreds of senior IT executives for a compelling series of high-level discussion panels, PUT Mura mma Lae 


presentations and peer networking activities. TC Tre Lely 


The Premier 100 IT Leaders for 2004 will be announced and profiled in our January 5, 
2004, issue of Computerworld and honored during a special ceremony at the March 7-9, CONFERENCE CHAIR: 
2004, conference. Rich with peer advice and real-world case studies, the conference ee Aa de 
content is built directly from user feedback provided by the honorees themselves. Our € , _ ee 
editors design a no-nonsense agenda that features Premier 100 honorees and other IT \ ee 

leaders focusing exclusively on top-of-mind issues and concerns of senior IT management. 
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Sponsors as of 11/21/03 
. f Actor and Educator 


<b > sas unisys — VeriSign 


LAWSON’ sawsione Gucr Imagine it. Done. The Value of Trust 


To register or for more information visit: www.premier100.com 
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Toshiba Boosts 
Tablet PC’s Power 


Toshiba Corp. in Tokyo has intro- 
duced a new tablet PC with 
beefed up processing power. The 
Portege M200/205 features an 
Intel Pentium M chip that oper- 
ates at 1.5 GHz. The M200/205 
also features an advanced video 
card from Nvidia Corp., the 
GeForce FX Go 5200, and a built- 
in Intel Centrino chip set. Pricing 
starts at $2,499. 


MCI Enhances VPN 


Service Portfolio 


WorldCom Inc., operating under 
the name MCI, has announced 
that its new IP VPN Broadband 
service is available in 55 cities. 
With the service in an Internet 
DSL Office scenario, users would 
pay $100 to install a Cisco VPN 
831 router, plus about $200 per 
month for the DSL connection 
and management of the router. At 
the user’s hub location, the fee 
would be $1,000 for a concentra- 
tor and $1,400 per month for Ti 
connectivity and management 
services. 


WebLogic Platform 


Ported to Sun OS 
BEA Systems Inc. in San Jose 


will port its WebLogic Platform 
8.1 to Sun Microsystems inc.’s 


Solaris x86 operating system, the | 


two companies said iast week. 
WebLogic Platform is Java server 
software for developing and inte- 
grating business applications. 
The porting is expected to be 
completed by mid-2004. 


Wild River Joins 
Linux Project 


Wind River Systems Inc. in Ala- 
meda, Calif., has joined the Carri- 
er Grade Linux project being put 
together by Open Source Devel- 
opment Labs Inc. to develop Lin- 
ux for use in networking and 
telecommunications equipment 
and applications. Wind River has 
also joined the Eclipse Consor- 
tium, a Raleigh, N.C.-based open- 
source tools group. 





PAUL A. STRASSMANN 


New Weapons of 


Informati 


HE OCTOBER ISSUE of Communications 
of the ACM featured papers about future 
robots capable of performing self-organiz- 
ing tasks. The authors showed how accel- 


eration in the processing power ofcom- | 
puters means that machines could soon reach the capa- | 


bilities of living creatures, at an affordable cost. 


The table below, from the 
Association for Computing 
Machinery article, shows the 
“computing” capacity of or- 
ganisms and illustrates when 
commercial computers had 
or are expected to have 
equivalent processing power. 

Instead of thinking about 
the rising potential for ro- 
botic machines, it occurred 
to me that software with the 
intelligence of a mouse or a 
monkey would have the 
frightening capacity to 
launch a new form of net- 
work-based warfare. 

So far, our approach to securing infor- 
mation networks has been static. The at- 
tackers write clever code that’s then dis- 
patched to potentially vulnerable appa- 
ratus on the Internet. The hostile code is 
designed to exploit the known weak- 
nesses of millions of computers as well 
as those of other programmable devices 
connected to the global Web. The extent 
of the damage depends on the speed 
with which the corruption propagates 
and on the speed with which defenders 
can deploy countermeasures. 

The Security Intelligence Products 
and Systems organization estimates the 
worldwide cost of damage from digital 
attacks from Jan. 1 to mid-November of 
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| ing to support money-making business 
| applications. From that point of view, the | 


| inflicting economic damage comparable 
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this year to be between $170 | 
billion and $203 billion — up | 
from $110 billion to $130 bil- 
lion for all of 2002. And that 
estimate doesn’t include 
costs for installing increas- 
ingly burdensome defensive 
measures. 

To place this figure into 
perspective, one must con- | 
sider that the estimated total | 
cost of information security | 
failures is about 10% of the 
total global cost of business 
computing. In a year when 
the increases in budgets for 

business computing remain in the 1%-to- 
2% range, the net effect of the losses 
from attacks is a cut in available spend- 


costs of software attacks can be seen as 


to that of a major terrorist incident. 

The question then arises of whether 
the current approaches to instituting de- 
fensive measures — as promised by soft- | 
ware vendors, consultants and your own 
security personnel — will be sufficient 
to overcome steadily escalating security 
threats. This is a classic problem in wag- 
ing defensive warfare, where the forces 
of attackers must be neutralized by the 
capabilities of the defenders. In force vs. 
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on Warfare 


| counterforce war games, attackers can 
be defeated if the learning cycle of the 
defenders is faster and their resources 
| are adequate to disable the aggressors. 


| 


Unfortunately, the outlook for infor- 
mation security from the standpoint of 
information warfare isn’t encouraging. 
Current methods of blocking intruders 
aren't likely to be adequate to secure In- 
ternet commerce. When swarms of 


| adaptively learning software attackers 


are launched, they will have the capacity 
to sense and learn the capabilities of the 


| defenders and to modify their attack 
| plans accordingly. The balance of power 


will shift in favor of the attackers. The 
cost of launching attacks will decrease 


| and the expense for defenses will esca- 


late until it becomes prohibitive for com- 


| panies to pursue the current policy of 
| adhering to static defensive measures. 


The present methods for security as- 


| surance are as obsolete as Cold War mil- 
| itary tactics. Regardless of how many 

| firewalls you put up, a software “robot” 

| with monkey-like intelligence will find 


ways to punch through and then inform 
other roaming attackers where to pene- 


| trate. Regardless of how frequently you 
| patch your software or how often you 
| download virus updates, self-aware mu- 


tant code will bypass defenses that were 


programmed for old patterns of attack. 


In the new era of information warfare, 


| network defenders must use new tactics. 
| They will have to launch active counter- 
| measures to disable the learning capabil- 


ities of the aggressors. Networks will 
have to be designed for initiating search- 


| and-destroy software that will find at- 
| tackers faster than the malevolent soft- 


ware can locate new vulnerabilities. In- 
ternational cooperation will be essential 
in identifying and neutralizing the 
sources of disruption. Punitive liability 


| will have to be applied in cases where 


negligence fosters the proliferation of in- 
security. Most important, the influence 
of CIOs will have to rise, because securi- 
ty has now become the primary impedi- 
ment to further progress of a global in- 
formation society. @ 43010 


WANT OUR OPINION? 


For more columns and links to our archives, go to 
www.computerworid.com/opinions 





INTRODUCING 


THE FASTEST WAY TO MAKE YOUR 


APPLICATIONS 


Imagine your applications — both legacy and 
new — performing together as an ensemble. 

That vision can become a reality surprisingly 
quickly with Ensemble, the comprehensive inte- 
gration platform with all the functionality you 
need to rapidly complete any type of integration 
project on deadline and on budget. Even complex 
projects you may have struggled with in the past. 

With its unique fusion of powerful technologies 
for application integration, development, deploy- 
ment, and management, Ensemble enables 
extremely fast integration and rapid development 
of “composite applications” — new business 
solutions that integrate data, orchestrate business 


InterSystems 


processes, and enhance the value of legacy applica- 
tions. Youll see real-world evidence of this in the 
customer testimonial section of our web site.* 

Ensemble is exciting new software from 
InterSystems. Over the past twenty-five years our 
high performance products have been deployed 
in more than 100,000 mission-critical systems 
around the world. 

We’re so confident that Ensemble is drama- 
tically faster than any other integration technology, 
we’ll be happy to begin our partnership with you 
by conducting a pilot project. To pursue this, 
contact us at: 
www. InterSystems.com/Ensemble/Pilot 


Ee ENSEMBLE 


Integrate Applications Faster 


*Read how companies like yours have integrated applications faster with Ensemble: www.InterSystems.com/Ensemble/Customers 
If you are a System Integrator in need of a rapid integration platform, come to www.InterSystems.com/Ensemble/Partners 
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CIO on Board 


Being asked to join a board of 
directors can mean you've “finally 
arrived.” But it also carries risks 

and liabilities. Here are 10 things a_ | 
CIO should know before taking 
a seat. Page 48 








Thinking Like a Manager 
Q&A: Harvard Business Review 
author Jonathan Gosling tells why 
good managers are crucial to a 
company’s success and identifies 
five mind-sets that can help you 
think like a manager. Page 46 


Transform the 

Year-end Planning Ritual 

Opinion: Columnist Paul Glen provides 
a new way of carrying out the dreaded 
annual planning exercise that focuses 

on organizational teamwork so you get 
better results. Page 52 








Software contracts are full 
of hot spots. Here are some 
tips for not getting burned. 
K Melymuka 
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OME VENDORS ARE LIKE DISNEY VILLAINS,” says Brad 
Peterson. “They’re manifestly evil, and you have to 
watch them.” The villains among vendors don’t make 
their big money on initial software licenses, he says, 
but once you start building your company around the 
software, they go into “harvest mode,” charging sub- 
stantial fees if you want to continue using that software 
after mergers, acquisitions or outsourcings, or even if 
you need to let consultants or contractors use it at your site. 

“If no one has taken a look at a little clause like ‘right to transfer 
software,’ that’s where their profit is,” says Peterson, co-author of 
The Smart Way to Buy Information Technology (Amacom, 1998) and 
a partner in the outsourcing practice of Mayer, Brown, Rowe & Maw 
LLP in Chicago. “You really have no choice but to go back to them 
and ask them how much money they want.” 

Your only real protection is to understand those “little” clauses before 
you sign the contract. Here are nine of the more dangerous ones: 


SCOPE OF USE 
What to watch out for: 
Who is entitled to use 

the software, and where 


an indirect use — like an out- 
sourced payroll clerk who needs 
access to your project manage- 
ment software to see employee 


are they entitled to use it? Is the 
scope clause narrowly crafted 
to current use? 

It’s very common to want to 
add users over time, and that in- 
cludes consultants or contrac- 
tors, says Paul Roy, also a partner 
at Mayer, Brown. But even if it’s 


work records — you need con- 
sent from the vendor. “It’s enor- 
mously costiy and time-consum- 
ing, and the vendor can hold you 
up for ransom,” Roy says. 
Whether it’s named users, geo- 
graphical limits, the number of 
Continued, page 44 
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Continued from page 43 

users or particular machines, “every 
clause that narrows the scope is an 
opportunity for the vendor to collect 
more money when your world 
changes,” he says. Keep definitions 
broad enough to include users you 
might add later, and be sure you can 
do so at the original per-user rate. 
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STATEMENT 

OF WORK 

What to watch out for: 

Is it vague or incomplete? 

Never sign a contract without a very 

detailed statement of work, says 
Lawrence A. Thomas, a partner who 
specializes in technology law at 
Thomas & Opp PA in Minneapolis. 
You may be tempted to include some 
30,000-foot view of the project be- 
cause the statement of work isn’t com- 
pleted, everybody is eager to move the 
work forward, and you trust the ven- 
dor, he says. But the vendor can later 
claim that the project has gone beyond 
its original description and will have to 
be completed at additional cost. With- 
out a detailed statement of work in the 
contract, “you’re stuck,” says Thomas. 
“You just keep paying and paying.” 
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OWNERSHIP 

What to watch out for: 

Who has the rights to 

custom software you co- 
develop with a vendor? 

Unless you've spelled it out other- 
wise in the contract, the vendor has 
the right to license to others whatever 
software you develop together, includ- 
ing any best practices or proprietary 
processes you’ve built in, Roy says. 

Development agreements should 
spell out ownership of whatever im- 
provements or input you provide. You 
should withhold from the commercial 
product any proprietary processes that 
give you a competitive edge, Thomas 
says, but the vendor should be free to 
license other enhancements. For en- 
hancements that fall in the middle, 
compromise by holding them back 
from the market for a year to allow 
you to get a jump on your industry. 
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CONFIDENTIALITY 
What to watch out for: 
Do your employees under- 
stand the confidentiality 
clauses in the software they use? Do you? 
If not, your company may be held re- 
sponsible for the actions of employees 
who no longer work there, says Diana 








J.P. McKenzie, a partner at Gordon & 
Glickson LLC, a technology law firm 
in Chicago. 

For example, your company signs 
a contract with Software Vendor A that 
stipulates that your company won't 
compete with the vendor. Jane, your 
chief architect, later leaves to form a 
software company that competes di- 
rectly with Vendor A. “Vendor A isn’t 
going to sue Jane unless she’s a rip- 
roaring success on Day 1,” McKenzie 
says. “It’s going to sue the company 
with the deep pockets, which is you.” 

You're responsible for explaining the 
rules to Jane and having her sign a 
noncompete agreement, McKenzie 
says. “But in a world where we're all 
trying to cut expenses, some of that 
detail can get cut out of your process. 
And that’s a really bad idea.” 
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WARRANTY 

What to watch out for: 

Is the vendor promising to 

meet your business needs or 
just provide software? 

You may think you’ve bought the 
solution to your business problems, 
when you've really bought only the 
right to use the software, which may or 
may not meet your needs, Peterson ex- 
plains. Regardless of what the sales- 
person promised, he says, “the con- 
tract is the final statement of all obliga- 
tions of the parties.” 

Resist pressure to do the deal quick- 
ly, he says. List your specific needs and 
what the software has to do to meet 
those needs. Then get the vendor to 
commit in the contract that the software 
meets those needs. “Think it through, 
write it down, and determine whether 
you’ve got a commitment,” he says. 
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IMPLEMENTATION 

DELAY 

What to watch out for: 

Tf you allow a vendor to 
postpone an implementation deadline, 
can the vendor delay completion of the 
implementation indefinitely? 

“You have to be careful when you 
push back the timing that you don’t 
wind up giving the vendor an unfet- 
tered right to never complete,” McKen- 
zie says. When you let a deadline slide, 
there’s a tendency to just say the new 
deadline is whatever the parties agree | 
on, she says. But if the vendor has oth- 
er, newer priorities, it may never agree. 

If you decide to change any dates, be 
very careful and put the new deadline 
in writing, she says. “And make it clear 
it’s a one-time-only deal.” 





LIMITATIONAL 

LIABILITY 

What to watch out for: 

If everything goes wrong, can 
the vendor pay a relatively small fee 
and leave you holding the bag? 

In virtually every contract, McKen- 
zie says, there’s a limitational liability 
clause that lays out the maximum a ven- 
dor would have to pay if it did every- 
thing wrong. But in this economy, some 
vendors are using such clauses to get 
out of bad deals. “If the vendor is los- 
ing money on the deal, we sometimes 
see them just hand you the limitational 
liability and walk,” she says. “We’re 
seeing those more than ever before.” 

Negotiate a limitational liability 
clause that’s very large or even unlim- 
ited, she says. Then the vendor has to 
make the engagement work or finance 
your transition to another vendor. 
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UPGRADES 
What to watch out for: 
Do you have to pay for 
major software upgrades? 
Upgrades are normally included in 
the maintenance costs of a contract, 
but vendors like to add a clause stating 
that when they believe an upgrade is 
major, you have to pay for it, Peterson 
says. If you allow such a clause, you’ve 
got no leverage, he says. “You can’t de- 
cide to stay on the old version, because 
after a while it’s not supported, and 
switching systems is very painful.” 
Negotiate the right to upgrades. 
“You're protecting your future and 
making sure you don’t have large, 
unexpected costs,” Peterson says. 
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RESPONSE TIMES 
What to watch out for: 
Is there an objective warran- 
ty regarding response times? 
“The biggest reason CIOs get fired 
is response times are too high,” says 
McKenzie. “You don’t want a system 
where you hit ‘Enter’ and you can go 
have a cocktail while you wait for the 
screen to come back.” Make sure you 
have a warranty for response times 
that’s based on objective standards, 
typically less than a second for critical 
functions, she says. @ 42789 


Melymuka is a Computerworld 
contributing writer. You can contact her 
at kmelymuka@yahoo.com. 


LEGAL LAND MINES 


Find out how to deal with new privacy and security rules: 


QuickLink 41134 
www.computerworld.com 
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Contracting Tips 


Here are some general software 
contracting tips from Phil Bode, 
director of training at International 
Computer Negotiations Inc., an IT 
procurement consulting firm in 
Winter Park, Fla. 


ume ng. The vendor, as 
licensor, has all the rights; you, as 
licensee, have none except what's 
in the license agreement. 
Vendor contracts are designed 
to protect vendors. Your contract 
should protect you. Nearly all major 
software vendors are open to using 
yours. 


- such as 
the use of your company's contract 
- early in the process so there will 
be no surprises or battles of will at 
the end. 

Demand the rights you need and 
will need in the future before you 
sign the contract. If you try to ex- 
pand your rights down the road, 
you'll have no leverage. 


Choose your battles. Vendors re- 
spect customers who fight for their 
rights, but they lose respect for 
those who waste time making 
mountains out of molehills. 


Weasel Words 


In any contract or license, watch out 
for “weasel words” that seem to im- 
ply something that isn't really quar- 
anteed, says Diana J.P. McKenzie, 
a partner at Gordon & Glickson. If 
a vendor contract says, 

or “We estim don't 
confuse that as a commitment, she 
says. “It's not.” 

If a contract says, “Our goal is to 
return calls within the hour,” the 
only thing that means legally is that 
the vendor thought it would be able 
to do that, not that it actually can, 
she explains. 

“Folks get fooled into the 
language of ‘goals,’ ‘estimate 

hopes’ and ‘plans,’ ” she says, “but 
those are not a guarantee. You need 
something that says, “We will return 
calls within the hour.’ That has an 
entirely different legal meaning.” 

- Kathleen Melymuka 





| need the ultimate 32-bit server 
and the ultimate 64-bit server 
to be the same server. 


The AMD Opteron’ processor, superior 32-bit performance with expanded 64-bit capability. 
It’s the only server processor designed to run your 32- and 64-bit applications simultaneously and without compromise. 


AMD Opteron runs on AMD64, a breakthrough architecture that enables 64-bit technology on the x86 platform—creating 


a new class of computing. 


The world’s highest performing 2P and 4P industry standard servers 
are now powered by AMD Opteron processors. Get unparalleled 32-bit 


performance and the ability to transition seamlessly to 64-bit computing. 


Leverage your existing investments while preparing for the future. It’s one architecture 
across your enterprise that offers industry leading performance for your 32-bit applications, and doesn’t 
require a forklift upgrade as more 64-bit applications emerge. It’s just another way AMD designs and builds 


processors with you in mind. For a closer look at the AMD Opteron processor, visit www.amd.com/opteron 
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Thinking Like 


MANAGEMENT 


A Manager 





Today’s obsession with ‘leadership’ 
has taken the focus off the critical 
importance of good management. 





Everyone wants to 
be a great leader, 
but nobody aspires 
to be a good manag- 
er anymore, says 
Jonathan Gosling 
and co-author 
Henry Mintzberg 
in November’s Har- 
vard Business Re- 
view. But leader- 
ship without the 
foundation of good 
management can be destructive, says 
Gosling, director of the Centre for Lead- 
ership Studies at the University of Ex- 
eter in England. He talked with Kathleen 
Melymuka about what it means to think 
like a manager. 


Why is thinking like a manager so impor- 
tant? IT managers will appreciate that 
a lot of work goes into maintaining an 
IT network that nobody knows about 
till there’s a big systems change. But 
maintaining the continuity of activity 
is seen as second-rate, where blitzing 
with change is heroic. It’s kind of a 
miracle, really, that people come to 
work and do so much productive stuff 
together. And it has to do not only with 
being led; it’s about careful attention to 
keeping an organization together. 


You offer five “mind-sets” to get man- 
agers on the right road. What do you 
mean by a mind-set? Habitual turns of 
mind. Some people, for example, tend 
to be habitually reflective. Whatever's 
going on, they will ponder, and you see 
that they’re making connections in 
their internal world. Others are much 
more action-oriented. They just want 
to get on and do it. We think it’s very 
important that people find different 
mind-sets in themselves. We're trying 
to help the reflective person to find 

in herself the pleasure of action and 





practice it and get at home with it. 


The first mind-set is reflective. How would 
a reflective mind-set help an IT manager 
do his job better? In relation to working 
with salespeople, for example. The 
salespeople just keep banging their 
fists, and you, as an IT manager, keep 
saying, “Let’s be realistic about it. This 
will take time.” The reflective mind-set 
will think, “How am I responding? 
How do I appear to them? I wonder 
how I can communicate more effec- 
tively with them so they can see things 
from my position?” 

Or during a change process, it’s 
often helpful to think, “Have I been 
through this before in some other situ- 
ation? What can I learn from history?” 
It also has to do with the process of 
setting strategy and vision, and in- 
creasingly IT managers are involved in 
strategy. Here it asks, “What does this 
company really stand for? What should 
we be doing? What values are impor- 
tant to us? What are our capabilities? 
What would we have to do to get 
there?” 


Next is the analytical mind-set, but you 
want managers to get beyond traditional 
analysis. Can you explain why and how? 
Analysis is a hugely powerful process 
for taking a complex situation and 
breaking down the constituent parts. 
But taken to extremes it becomes a 
pleasure all its own. You can analyze 
every bit of work and put a cost to it 
and forget that the whole point is to 
serve customers. 

Analysis is like the left hand in a pi- 
ano piece: You also need to be collabo- 
rating with the overall business mis- 
sion. And some problems are about 
making choices between paths of ac- 
tion with uncertain outcomes. The 
kind of analysis there is rather differ- 
ent. For example, should we relocate 





IT services to Bangalore? It’s relatively 
straightforward to look at cost but 
much more complex to evaluate long- 
term strategic implications like compa- 
ny identity and employment issues. 


You want managers to have a worldly 
mind-set rather than a global one. What’s 
the difference? Broadly speaking, we’re 
interpreting “global” as seeing the 
globe as a unity converging toward 
more and more common ways of doing 
things, looking at different parts of the 
world as extensions of a single market- 
place and seeing each exchange rela- 
tionships as part of that global market- 
place. If you're actually put in charge 
of a joint-venture operation in Korea, 
however, you will find the world looks 
quite different from there. The market 
looks different; people behave differ- 
ently; the reason they’re in the joint 
venture may be different from your 
reason. You see that the world is made 
up of a host of different interest groups 
and value systems. 

A manager has to give people a 
sense that they belong to the commu- 
nity they know but [that] what they be- 
long to is meaningfully connected to 
this bigger system of things. That’s 
worldliness. 


In the collaborative mind-set, you say you 
move from managing people to managing 
relationships. What’s the difference, and 
why is it important? If you talk about 
managing people, it’s as if the manager 
sits outside the set of relationships and 
as if people were not willful characters 
of their own. It’s a very depersonaliz- 
ing experience to be managed in this 
way. It’s much more rewarding to say, 
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“How do we together make this place 
work?” Really what they’re doing is 
trying to finesse the ways in which 
people relate so that out of that rela- 
tionship comes productive work. 


You say that the action mind-set can ben- 
efit from a little humility. What do you 
mean? Often there’s the notion that I, 
as the boss, made this place change. 
But as another member of the staff, 

I imagine you made quite a lot of 
changes yourself. So let’s be clear 
about exactly what it is that allows 
productive change to happen. It almost 
always requires a combination of all 
the mind-sets we’ve discussed, but it’s 
not all about the great chess player sit- 
ting on high moving pieces around. 


This is a lot to juggle. How do | put it all 
together? When you think about your 
own job, you probably already exercise 
all those mind-sets in part. If you really 
like that little bit of time in the morn- 


| ing in the car reflecting and getting 


ready for the day, then maybe if you 
take a five-minute walk in the middle 
of the day, that might help too. What 
about analysis? Maybe your IT depart- 
ment works fine together but not so 
when it comes to working with out- 
sourcers and vendors. How can we im- 
prove those relationships? And it goes 
on from there. @ 42312 





Melymuka is a Computerworld con- 
tributing writer. She can be contacted 
at kmelymuka@yahoo.com. 





This is the latest in a series of monthly discus- 
sions with Harvard Business Review authors 
on topics of interest to IT managers. 


Two Takes on Management 


HEROIC 


Separated from those who develop 
products and deliver services;a VIP. __ 


Hierarchical; the higher he gets, 
the more important he becomes. 


Imposes strategy from on high. 


| __ Embraces change while others t resist it. 


Allocates resources, including human 
resources, based on facts from reports. 


Rewards leaders based on performance: 
_What matters is what can be measured. 


Thrusts his will on others. 


i 


ENGAGING 


Integrated; finds value in helping others 
get work done. 


she cc be A EE I PE 
Networked; works from within, not from 


Helps strategies emerge from the net- 
work of problem-solvers. 


Nurtures change from inside the network. 


Inspires people to engage their positive 
energy based on judgments rooted in 
context. 


Rewards everyone who improves the 


organization; human values matter. 


Earns the respect of others. 








Executive 


EXECUTIVE GUIDES FOR STRATEGIC DECISION-MAKING 
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OR MANY CIOs, being asked to serve 
on an outside board of directors is 
evidence that they’ve finally arrived. 
And why not? Board membership is 
public recognition that a CIO has 
experience that another company 
craves. It’s also an opportunity to 
network with the bigwigs that popu- 
late most boards. Then there’s the extra compensa- 
tion, which can run into five figures, even without 
stock options. 

However, CIOs dreaming about board member- 
ship must realize that being asked to serve ona 
board isn’t like winning an award. Ever since Con- 
gress passed the Sarbanes-Oxley Act reforming cor- 
porate governance, boards have gained more respon- 
sibility, which means that board members have more 
work to do. There’s also the risk of lawsuits, espe- 
cially now that shareholders are so quick to sue 
when a public company goes south. 

To better understand the pros and cons of board 
membership, Computerworld asked five board- 
serving CIOs (and some corporate governance ex- 
perts) what a CIO really needs to know before join- 


ing a board. 


YOU'RE A VALUABLE ASSET TO THE BOARD. 
There’s no question that a CIO can add value, 
according to Marty Chuck, CIO at Agilent Tech- 
nologies Inc. in Palo Alto, Calif., who serves on 
the board of ServGate Technologies Inc. in Milpitas, 
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Calif. “CIOs regularly counsel their own executives 
regarding choices they can make to optimize their 
business with IT,” so it’s not a stretch for CIOs to 
advise other companies’ CEOs, Chuck explains. 
“This experience puts CIOs in a unique position to 
guide and counsel emerging as well as established 
companies.” 

Faisal Hoque, chairman and CEO of Enamics Inc., 
a Stamford, Conn.-based IT management software 
and services firm that has always had a CIO on its 
board, agrees that this is true, especially when the 
board is for a high-tech firm. “A CIO helps the IT 
vendor stay on target with its customers,” says 
Hoque. “It’s a way to make certain that your sales 
efforts will work in the real world.” 


YOU MAY NOT BE THEIR FIRST CHOICE. 

Boards are getting smaller and more selec- 

tive, which makes it less likely for CIOs to be 

recruited, according to Phil Schneidermeyer, 
the CIO practice leader at Highland Partners, an ex- 
ecutive search firm in Stamford, Conn. “Most firms 
are looking for top executives with extensive opera- 
tional and financial experience,” he explains. Unfor- 
tunately, CIOs aren’t always seen as having a wide 
business perspective. “CIOs tend to rise through the 
technical ranks and thus lack the high-level exposure 
of a CEO or CFO,” says Richard White, CIO at Ross 
Stores Inc. in Newark, Calif., who serves on the 
board of PerformanceRetail Inc. in Austin. White 
was previously a management consultant. 

Continued on page 50 


Joining a board of directors looks 
200d, but today it carries new 
liabilities, too. BY GEOFFREY JAMES 





1. Instantly admitting patient. 
2. Immediately processing claim. 


3. Automatically approving procedure. 


4. Constantly tracking treatment. 
5. Directly assessing costs. 
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YOU'LL NEED TO BE HIGHLY 

VISIBLE BEFORE YOU’RE ASKED. 

Boards are looking for CIO candidates who 

have consistently delivered innovative results 
and value through technology for their companies. 
In order to be considered for a board, you'll need to 
increase your visibility to outside companies by ac- 
tively networking with key industry influencers and 
board-level decision-makers. Receiving prominent 
industry awards and maintaining a strong relation- 
ship with your own company’s top leaders will also 
foster your professional reputation, says Carl Wilson, 
CIO at Marriott International Inc. in Bethesda, Md., 
who serves on the board of Enamics. “When inter- 
viewing for a seat at the board table, a CIO candidate 
should directly highlight how his unique skills would 
add value in guiding the outside company and en- 
hance its board’s composition,” he says. 


THE BOARD MAY BE A DISASTER 

WAITING TO HAPPEN. 

CIOs asked to serve on the board of a pub- 

licly held company must be acutely aware 
of any potential regulatory problems that the firm 
might face in the future, according to Maryanne 
Peabody, vice president at Boston-based Stybel 
Peabody Lincolnshire Associates, a consulting firm 
that works on corporate governance issues. She 
says board candidates should never be satisfied 
with the information a company provides during 
the recruitment process. Instead, they should dig 
through financial reports and even check the em- 
ployment history of the chief executives. “A compa- 
ny that’s restated its revenues is a big red flag,” she 
says. “Another danger signal is a board that’s domi- 
nated by insiders.” 


YOU, AND THE REST OF THE BOARD, 

COULD GET SUED. 

While most boards have special liability in- 

surance that covers stockholder lawsuits, the 
coverage may be inadequate. For example, a policy 
written 15 years ago might only cover each director 
for a quarter of a million dollars — an absurdly 
small sum in today’s litigious environment. Worse, 
some policies stipulate that the board members 
don’t get reimbursed for legal fees until after a case 
is settled, according to Ralph Ward, publisher of 
“Boardroom Insider,” an online corporate gover- 
nance newsletter. 

“Being on a board isn’t what it used to be,” be- 
moans Jack Cooper, former CIO at Bristol-Myers 
Squibb Co., who sits on the board of Lourdes Health 
Care Center Inc. in Wilton, Conn., and Concord 
Communications Inc. in Marlboro, Mass. “There's a 
lot more risk, especially if the firm is public.” 


YOU MIGHT NOT GET ALL THE 

INFORMATION YOU NEED. 

While boards are required to understand 

what’s going on inside a company, they aren’t 
always able to get the quality information they need 
to make good decisions. “You're very much at arm’s 
length,” says White. “Unlike in your own firm, you 
don’t have the ability to see what’s happening day to 
day.” CIOs should also be aware that some compa- 
nies have a history of keeping their boards in the 





MANAGEMENT 


Ask for your CEO's permission and assistance. You 
want to be certain that your management is com- 
fortable with the idea. 


Attend your own company’s board meetings. This is 
an opportunity to learn more about how boards of 


dark, according to attorney Thomas M. Parry, a part- 
ner at Marzouk & Parry, a Washington law firm that 
specializes in high-tech litigation. Parry recommends 
that board candidates talk to other independent 
board members to find out what documentation the 
company provided to resolve past issues. “You 
should never get into the position where you’re a 
rubber stamp for management,” he warns. 


YOUR FELLOW BOARD MEMBERS 

MIGHT BE COMPUTER-ILLITERATE. 

Remember back when executives thought it 

was degrading to have a PC on their desks? 
Boards of directors are the last bastion of this curi- 
ous form of computer illiteracy, Cooper says. 
“There’s still a general level of ignorance about tech- 
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Wright has been CIO at Campbell Soup Co. 
in Camden, N.J., since June 2001. She previ- 
ously was CIO at Nabisco Inc. and an executive 
in the financial services industry. 
Yankee Candle’s CEO and board chairman, 
Craig W. Rydin, said Wright was selected be- 
cause of her “broad-based business experience” 


in the consumer goods and finance industries, as 
Nel RM am RD eclgcae 


Last month, CIO Doreen A. 
Wright was appointed to the 
board of directors at The Yan- 
kee Candle Co. in South Deer- 
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- Mitch Betts 
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nology in the top bastions of corporate life,” he says. 
“Board members know, theoretically, that technology 
is important, but they’re fearful of having their igno- 
rance exposed.” 

The danger is that the board may consider the 


| ClO a “token techie” rather than a real contributor. 
“T’ve seen companies hold out a CIO on the board 


as proof that they believe technology is important, 
when in fact the company was behind the times,” 
says Schneidermeyer. 


YOU'LL BE ASKED TO DO SOME REAL WORK. 

Gone are the days when serving on the board 

meant a half-day meeting each quarter, fol- 

lowed by golf and then drinks by the pool. 
Given the current climate of regulation and scrutiny, 
companies now expect their board members to make 
substantial contributions of time and effort, Cooper 
says. “Make sure you have an understanding of what 
the board expects you to do,” he advises. Travel can 
also become a burden, adds Joe Farrelly, CIO at 
Aventis Pharmaceuticals Inc. in Bridgewater, NJ., 
who serves on the boards of Aperture Technologies 
Inc. in Stamford, Conn., and NetNumber Inc. in Low- 
ell, Mass. “From a practical and personal standpoint, 
always bear in mind that travel and time-zone logis- 
tics can become an issue, given the need for recur- 
ring face-to-face participation,” he warns. 


YOUR COMPENSATION IS 

UNLIKELY TO BE LAVISH. 

Being on a board used to mean serious mon- 

ey and lucrative stock options. That particu- 
lar gravy train has just about run out of steam, ac- 
cording to Parry, who points out that regulators now 
look askance at assigning options to outside board 
members, because doing so might compromise their 
independence. That’s not to say that there can’t be fi- 
nancial rewards for serving. Nonstock compensation 
can range from $50,000 to $75,000 for a major com- 
pany and considerably less for a smaller firm, 
Schneidermeyer says. However, Cooper notes that 
some CIOs may not be able to collect that extra 
salary because “some companies don’t let their CIOs 
receive compensation from being on outside boards.” 


YOUR CEO MIGHT NOT BE 
ENTHUSIASTIC ABOUT THE IDEA. 
Ideally, a CIO on an outside board gains 


experience and perspective that are 
valuable to the CIO’s own company. However, CEOs 
may not see it that way. Even some CIOs are skepti- 
cal. “I’m not convinced that Ross Stores gets much 
out of my sitting on the board of another company,” 
White acknowledges. 

Don’t lose heart, though. “Your participation on a 
board is an opportunity for you to draw on the expe- 
rience of a wide range of executives,” says Farrelly. 
“And it’s a chance to round out your own knowledge 
of budgetary, HR and other non-IT-specific issues.” 
Board membership can accelerate your career as a 
top executive, and that may be worth losing a point 
or two with your current employer. @ 42846 





James, the author of numerous high-tech books 
and articles, can be reached at his Web site, 
www.geoffreyjames.com. 
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MARK QUINLAN 
went to work in Oc- 
tober as CIO at 
Cleveland-based 
Charter One Finan- 
cial Inc., one of the 
25 largest bank 
holding companies 
in the country, after 
spending over two 
years at Union Central Insurance and 
Investments. “I love banking, and the 
big driver for me taking this job was to 
get back into the banking industry,” he 
says. Quinlan, 43, will lead Charter 
One’s IT division of about 200 employ- 
ees. He talked with Jean Consilvio 
about the banking industry. 


Charter One changed from a thrift to a 
bank last year. What IT challenges are 
you still dealing with from that 
changeover? The biggest change is a 
new set of regulators. It used to be 
the Office of Thrift Supervision, and 
now it's the Office of the Controller of 
the Currency. They have different oui- 
looks on things, tougher expecta- 
tions, and technology is part of that. 


Are they on-site examining operations 
all the time? For a bank our size 
[$44 billion in total assets], they're 
pretty much here all the time. They're 
not looking at the technology area all 
the time. 


Do you think that’s a good thing? 
Sure, for the most part. You have to 
make sure that people are doing the 
right things for their customers, their 
shareholders. But at the same time, 
there’s a lot of bad people out in the 
world, unfortunately, trying to break 
in, or once they're inside, they try to 
do something. And confidence in the 
banking industry by the public is cer- 
tainly very crucial. 


What IT projects are on tap? Lots of 
stuff; that's what I'm trying to sort out. 
We're expanding a lot; we've added 
100 new branches this year, and we'll 
continue that growth next year. 


Is this a challenging time for banks? 
Definitely - and for technology. 
There's no product that a bank can 
sell that isn't somehow managed and 
controlled by computers, so we're 
very integral to the whole product de- 
velopment and servicing aspects of 
the business. @ 42935 
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PAUL GLEN 


‘Transform the Year-end 
Planning Ritual 


NCE AGAIN, ’tis the season for annual 
planning, an exercise that fills managers 
with hope, dread, despair and anticipa- 
tion. It’s a time when we contemplate the 
future of our organizations, technology 


and personal fortunes. 

For most companies, the 
planning process takes 
place in a management 
meeting that can last as lit- 
tle as a few hours or as 
long as a week. But most of 
the agendas for these meet- 
ings are basically the same. 

They include: 

@ What did we do this 
year? 

@ What do we want to do 
next year? 

@ And, occasionally, 

Who’s going to be respon- 
sible for making next year’s 
stuff happen? 

Of course, hidden in 
these deceptively simple 
questions are myriad subtle and diffi- 
cult questions about technology, align- 
ment, strategy, priorities and budget- 
ing. By adding just a few more ques- 
tions, you’re more likely to garner the 
benefits of all this planning. It’s equal- 
ly important to address the following: 

® How did we work together this 
year? 

®@ How do we want to work together 
next year? 

@ How can we make the transition 
from how we were to how we'd like 
to be? 

These are important subjects, be- 
cause most of what we'd like to do fails 
to happen because of how we work to- 
gether, not because we've selected the 
wrong things to do. The dynamics of 
group functioning are most often at 
the heart of project and organizational 
failures, not poor planning. 





Here are four factors 
that will help you figure 
out whether your organiza- 
tional dynamics support or 
detract from achieving 
your goals. 

Motivation. Perhaps the 
most important determi- 
nant of success is the moti- 
vation level of your organi- 
zation. Listless and disen- 
gaged teams never achieve 
great things. No matter 
how well you plan what 
these teams will do, they’re 
unlikely to complete much. 
But truly motivated groups 
can overcome deficits in 
virtually every other area 
to achieve their goals. 

Here are a few questions to ask 
about the motivation of your organiza- 
tion: How motivated are your man- 
agers and project teams? How impor- 
tant is it to them that their projects 
succeed? Do they care whether their 
work supports a business purpose? 
How engaged are they with their work 
and their co-workers? 

Structure. How your people are or- 
ganized to work together also has a 
strong effect on group dynamics. More 
than just identifying the chain of com- 
mand, the structure of the group com- 
municates a lot about the values of the 
organization and delineates each indi- 
vidual’s role in its collective success. 

So consider these questions: Does 
everyone understand the overall struc- 
ture? Is it easy for individuals to un- 
derstand their own roles? Does every- 
one understand their individual goals 





and how achieving them will con- 
tribute to collective success? 

Leadership. Leadership is particularly 
important because it has the ability to 
transform all the other facets of group 
dynamics. Good leadership offers the 
possibility of positive change rather 
than stagnation or chaos. 

Although a very complex subject, 
there are a few questions to ask about 
the quality of your leadership team. 
How strong are our relationships with 
our clients and peer organizations? 
How do the staffers feel about their 
managers and one another? Do we 
have coherent and generally accepted 
processes and goals? 

Teamwork. Ultimately, work gets done 
by groups of people, usually arranged 
into project teams. How well the 
members of these teams work togeth- 
er, in many respects, dictates what 
they accomplish and their ability to 
carry on after completing a project. 

While teams in your organization 
probably have different strengths and 
weaknesses, there are often patterns of 
attitudes and behaviors across teams 
that are dictated by the organizational 
culture. For example, do your people 
tend to trust one another? Do they en- 
gage in constructive conflict, destruc- 
tive conflict, or do they just avoid it al- 
together? Do they really care about the 
results of their work, or are they fo- 
cused on other things? 

Planning represents a significant in- 
vestment of mental and emotional en- 
ergy for every organization. If you’d 
like to improve the return on that in- 
vestment, I'd advise planning for both 
what your group will do and how you 
would like them to do it. With a little 
extra thought, you can transform ster- 
ile annual planning into genuine orga- 
nizational renewal. @ 42788 
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Software Engineers-Multiple 
Positions: wanted by an IT con- 
sulting firm in Keene, NH to work 
at various client locations 
throughout USA. Respond to 
HRD, infowave Systems, 39 
Central Square, Suite #201A, 
Keene, NH- 03431. For all these 
positions, Two years plus pro- 
gressive hands on experience in 
software design and develop- 
ment with a Bachelors Degree is 
required 

SAP ERP: Exp. in SAP ERP 
modules such as SD, MM 
FI/CO, BW and RDBMS, Testing 
and Internet Technologies 
Oracle Data Warehouse: Exp. in 
enterprise data warehouse 
applications on Oracle, UNIX 
using PL/SQL, ETL Informatica 
Bi Business Objects, Database 
tuning, shell scripts, Oracle 
Applications 11.x/10.x 

Microsoft and ERP: Experience 
in enterprise and web applica- 
tions using Erwin, ASP, ERP 
GEAC & Great Plains, RDBMS 
and scripting languages on .Net 
Frame work 

Java: Experience in enterprise 
and web applications using 
Java-J2EE tools, XML suite 
Middle-tier, Rational Rose, UML 
Used Cases, BPMS etc. on 
UNIX. And Database program 
ming on any RDBMS and script- 
ing languages 

MF Data warehouse: Exper 
ience in Enterprise Data ware- 
housing applications on IBM 
Main Frame Environment, per- 
form Data mining and ETL 
Process. Develop reporting 
using Bi tools Business Objects. 
Data Warehouse and RETEK 
Experience in scalable 
Enterprise Data Warehouse 
applications using DSS tools 
such as Microstrategy Suite. 
RETEK RMS and RDW, any 
RDBMS, ETL Processes, EDI 
database programming and 
scripting languages 


information Scientist 
(Pharmaceuticals). RTP, North 
Carolina. Guide and review pre- 
clinical business systems 
Requirements and Design 
against company standards. 
tools and established architec- 
tures for large pharmaceuticals 
R&D company. Supervise tech- 
nical implementation, establish 
best practices and lead transi- 
tion from project to support 
Lead Design and Development 
Team to produce optimum sys- 
tems for pharmaceutical opera- 
tions. Develop evaluation crite- 
fia, research products and pro- 
duce evaluations of package 
solutions based on user needs 
in pharmaceuticals — setting 
Define technology principles and 
direction for projects in conjunc- 
tion with Information Architects 
Specify development too! sets. 
plan and estimate technical 
aspects of projects and specify 
design alternatives. Act as tech- 
nical authority for the project 
Ensure quality and regulatory 
standards are met. Serve as 
point of contact for suppliers and 
company groups on technical 
matters Req Bachelor's 
degree in Computer Information 
Science. 2 years of experience 
in job offered or in IT System 
Development. Following experi- 
ence, which may have been 
obtained concurrently: working 
knowledge, through academic 
coursework or experience, of 
VB, C++, HTML, XML, IIS/ASP, 
SQL Server, Oracle, Visuai 
Interdev, Developer 2000, Visual 
Basic 6.0 with OLE controls, and 
CASE tools; 1 year of experi- 
ence designing system solutions 
for large, complex R&D organi- 
zation, incl. hands-on experi- 
ence performing, leading and 
managing technical aspects of| 
the system development life 
cycle; 2 years of experience in 
pharmaceutical industry. 
Résumé: Mr. William Kelley, 
GSK, One Franklin Plaza, 
Philadelphia, PA 19102 


Mae bactona 


a) Certified Senior Business 
Analysts (ERP/CRM): Oracle 
Apps. 11.03/11i, PeopleSoft 8.0 
& related tech.; (b) Apps DBAs: 
Oracle RDBMS 7.x/9i, Oracle 
Apps. & related tools upgrade & 
migration, ERWIN, SQL Server 
RDBMS/2000/7.0 and related 
tech. on Solaris & various other 
platforms; (c) Certified Oracle 
Apps. Programmer Analysts 
ERP/CRM) Oracle Apps 
11.03/11i (modules - GL, AP, AR, 
FA, PO, INV, OE/OM, WIP, 
BOM, Discrete & Process Mfg 
HRMS, Service) - Customize 
Oracle Apps using Oracle 
Developer 6i/J Developer and 
related tech. for service mod- 
ules; (d) Senior Programmer/ 
Analyst: Oracle PL/SQL, Oracie 
9i, 9IAS & related tech.; (e) 
Siebel __CRM/Oracle__CRM 

nfiguration _ Programmer/ 
Analysts: Siebel suite incl. & 
Oracle CRM 31/11i (Sales 
ervice & Transportation mod- 
ules) & related tech.; (f) Senior 


tech., Oracle database 7.x/9i & 
related tech.; (g) Senior QA 
Engineers: Performance & Load 
testing in Oracle 11i and related 
tech. Experience testing on 
Oracle Processes such as Order 
to Cash, Procure to pay etc 
Experience with Mercury tools & 
rel. tech.: (h) Dataware House 
Programmer/Analysts: Oracle 
Dataware Housing, ETL Tech. - 
Cognos 7.x & related tech. suite 
of Products Finance, Informatica 
6.2, etc., Data Stage, Abinition & 
rel. tech. (i) Software Progra- 
mmer/Analysts: M.S.Net, C# 
C++, VB, J2EE, Java Strats. 
Documentum, MS Windows 
Administration & related tech. 
Prevailing wage. Consulting 
positions requiring travel. To 
apply, send resume identifying 
position(s) interested to HR, 
BPO Systems, 501 Silverside 
Road, Suite 83, Wilmington, DE 
19809. EOE 


Software Test Engineer. 
Proprietary trading firm, dsgn & 
execute tests for electronic trad- 
ing systems on UNIX & 
Windows piatforms Deliver 
Strategic applications to co's 
traders & customers; learn appli- 
cation & provide feedback to 
development team & support 
users; bug reports & risk 
assessments for new applica- 
tions, releases & patches; soft- 
ware rollout & production sup- 
port. Req's: Bachelor's Deg, or 
equiv, in Comp Eng, Comp Sci 
or related field. 3 yrs exp in job 
offered or 3 yrs exp as Systems 
Analyst(Consultant. Exp must 
include real-time client/server 
systems, Oracle or other rela- 
tional database, software instal- 
lation, system testing, produc- 
tion verification testing, cus- 
tomer certification testing, per- 
formance testing & GUI testing 
Exp can be gained while pursu- 
ing deg. Prof in Solaris, UNIX. 
Windows NT & _ Scripts 
40hrs/wk. email resume to 
recruiting@sig.com _ reference 
code 2394 


Lead Programmer Analyst 
Columbus, GA. Produce and 
deliver fully-tested computer 
programs from business require- 
ments and/or program specifica- 
tions on time and according to 
specifications for a credit card 
systems and processing compa- 
ny 


Competitive Salary. Must have 
Bachelor's degree or equivalent 
in Computer Science or 
Engineering + (5) years of pro- 
fessional experience program- 
ming in a mainframe environ- 
ment w/ COBOL, DB2, IMS, & 
TSO including (6) months of 
TS2 & TSYS Government 
Services platform. Must have 
legal authority to work in the 
US Please send resume 
demonstrating all minimum 
requirements to Kerri 
Alexander, 1600 ist Ave 
Columbus, GA, 31907; Ref # 
LPAGPU 
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SENIOR SYSTEMS 
INTEGRATION ENGINEER 


Witness Systems, Inc., a 
Developer of Client/Server 
Monitoring Software, seeks a 
qualified Senior Systems 
Integration Engineer for 
Bloomington, iL location. Must 
have a Bachelor's degree or for- 
eign degree equivalent in 
Electrical Engineering, Comp- 
uter Engineering, or related field 
plus 2 years of experience in the 
position offered or 2 years of 
experience in operating systems 
administration, database admin- 
istration, and programming 
Salary and benefits commensu- 
rate with experience. Send 
resume to Sheri Mattison 
Employment Manager, Witness 
Systems, Inc. 300 Colonial 
Center Parkway, Roswell, GA 
30076 


Software Engineer sought by 
Blackwood, NJ-based virtual 
marketplace for used semicon- 
ductor equipment. Must have 
Bach in Comp Sci., Engg or 
equiv and one yr relevant exp in 
Lotus Notes, Domino 5.0/6.0. 
Java, Javascript, LotusScript, 
DHTML, XML, LS:DO, Domino 
Workflow, Visual Basic and 
Activex Web/intranet _ site 
design/development. Must be a 
CLP (Certified Lotus Pro- 
fessional). Must have ability to 
interface with Asian customers 
and have understanding of Asian 
business protocol. Respond to 
HR Dept, GCEMARKET.COM 
1001 Lower Landing Road, Suite 
307, Blackwood, NJ 08012 


Programmer Ill. Req BS or equiv 
in Comp Sci, Engr or related 
field plus 3 yrs exp as 
Programmer (including 3 yrs 
w/VB6, Oracle & SQL Server. 
Access/Excel, Crystal Reports. 
6 mos w/Medicare Claims data; 
exp w/XML, XSLT, XPATH) 
Send resumes to Anne Dennis. 
6000 Westown Parkway, #350E 
West Des Moines, IA 50266 
(Job #9123) 


Software Architect - Boulder, 
CO. Design/implement experi- 
mental Grid Svcs. for transfer- 
ring distrib. data from high ener- 
gy & fusion experiments & simu- 
lations using component-orient- 
ed middie-ware technologies 
incl. CORBA Component Model 
(CCM) & Grid Svcs. Req. MS in 
CS, 4 yrs. exp. building & evalu- 
ating CORBA distib. communi- 
cation framework & using C++ 
OO principles and design pat- 
terns, 3 yrs. exp. in CCM 
Resumes to M. O'Hare, 7750 
Clayton Road, #209, Richmond 
Heights, MO 63117 


Want a new 
IT career? 


Check out our jobs 
in the combined 
CareerJournal.com 


database. 


www. itcareers.com 


Lakeetacousmeeyen 


itcareers.com 


is the place where 
your fellow readers 
are getting a jump 
on even more of the 
world's best jobs. 


Now combined with 

CareerJournal.com, 

You have more jobs 

to choose from. Stop 
in for a visit and see 
for yourself at: 


www.itcareers.com 


or call: 


800) 762-2977 
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job searching and 
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Technical Manager-Latin Amer- 
ica sought for Miami, FL office 
Requires Bachelor's degree or 
the equivalent in education and 
progressive, professional expe- 
rience in Computer Science 
Computer Engineering, MIS, or 
related field 
mgmt serving Latin American 
businesses, with 2+yrs working 
knowledge of the following prod- 
ucts: Cognos suite of Application 
Development Tools; Cognos BI 
Platform; Windows and Unix 
operating systems; Networks. 
and Relational Data Base 
Management Software (such as 
Oracle, SQL-server), and bilin- 
gual fluency (oral & written) in 
English & Spanish, 60% int'l 
travel to Latin America. Must 


yrs exp in IT 


have unrestricted authorization 
to work in the U.S. Respond to 
Ref#5879, usjobs@cognos.com 
or HR Dept, Cognos Corp, 15 
Wayside Road, Burlington, MA 
01803. For more information, go 
to www. cognos.com 


SYSTEMS ENGINEER 


Witness Systems, Inc a 
Developer of Client/Server 
Monitoring Software, seeks a 
qualified Associate Quality 
Assurance Engineer for Atlanta 
GA locatior Must have a 
Bachelor's degree foreign 
degree equivalent in 
Engineering or related field plus 
2 years of experience in the 
position offered or 2 years of 
experience as a Software 
Engineer. Saiary and benefits 
commensurate with experience 
Send resume to Sheri 
Mattison, Employment Manager. 
Witness Systems, Inc. 300 
Colonial Center Parkway 
Roswell, GA 30076 


Strategy Resources, Inc., a soft- 
ware consulting company seeks 
a Sr. Software Engineer with 
expertise in web applications, e 
commerce and e-date exchange 
for secure, multi-user large- 
scale applications. B.Sc./Comp 
Sci. with 5 years exp. Health 
care industry/supervisory expe- 
rience highly desirable. Forward 
resume to: Attn: SM, 360-23 W 
Schick Rd., #215, Bloomingdale. 
IL 60108 or email to 


info@lycontech.com 


Senior Software Engineer 
needed. Must have Masters 
Degree in Computer Scie- 
nce or Engineering and 2 
yrs experience as Software 
Engineer including 2 years 
of C/C++, Assembly and 
VxWorks. Send resumes to 
Roy Masters, Epilog Laser, 
500 Corporate Circle, Ste 
L, Golden, CO 80401 


ShellSoft seeks IT professionals 
(programmer/system analysts 
software engineers), project 
engineers Our = minimum 
requirement is BS. Good skills 
using Oracle, SAP, SQL, Java, 
C/C++ preferred. Some position 
requires travel. Please send 
resume to 
jobs@shelisoftinc.com. EOE 


Gordan Food Service (GFS) has 
openings for Sr. Software 
Engineers/System Analysts 
Candidates must have minimum 
BS degree with exp in Unix, 
Oracle PL/SQL, J2EE, Tuxedo, 
MQ Series. Competitive wage 
with full benefits. Send resume 
to ereply@davidgroup.com. 
EOE 


Dae Wkeos aS 


Programmer Analyst 
opening: 4 

Software design and develop- 
ment, in Java, J2EE, Corba 
OOP in a UNIX, environment 
UML, RUP, rational rose, Clear 
Case, clear quest,orbix 2000. 
weblogic 8.X, Oracie, dream 
weaver, vignette. Minimum edu- 
cation of Bachelors in computer 
Science or related fields is 
required with 2-3 years of expe. 
rience or masters in computer 
Science or related fields with 1- 
2 yrs of experience 
Programmer Analyst 
Opening: 4 

Software design and develop- 
ment, in C/C++, Corba, OOP in 
a UNIX environment, UML, RUP. 
rational rose, Clear Case, clear 
quest, orbix 2000, weblogic 8.x 
Oracle, dream weaver. minimum 
education of Bachelors in com- 
puter Science or related fields is 
required with 2-3 years of expe- 
rience or masters in computer 
Science or related fields with 1- 
2 yrs of experience. 

Send resume to: 
Semafor Technologies LLC 
3300 Holcomb Bridge Rd, 
#212 
Norcross,GA-30092 


Computer Information Systems 
Manager Charlotte NC 
Wachovia Corp. Manage a 
team of software developers to 
produce software appl.. Regs. 
BA or equiv. in Computer 
Science and 1 yr exp. in the pos. 
offered or as an IT Developer or 
Systems Analyst. The tyr. must 
have incl. new appl. dvip., test- 
ing, debugging and implementa- 
tion of client/server and web 
appl converting business 
specs. into code, writing data- 
base code (incl. stored proce- 
dures and triggers) in the follow- 
ing databases; Sybase, Oracle. 
SQL Server and Microsoft 
Access Microsoft Office 
PowerBuilder, Cold Fusion 
Autosys, Unix shell scripting. 
MS Visual Studio.net, and HR 
mgmt. systems in such areas as 
performance mgmt., compensa- 
tion, pos. mgmt., benefits and 
human capital mgmt. inci 
Peoplesoft. M-F, 8-5, Send 
resume to Geri Henderson 
Wachovia Corp., 300 South 
Brevard, 14th Floor, Charlotte. 
NC 28288. No phone cails. 


INET2S 


NET2S is a leading International e- 
business, information technology 
and communication infrastructure 
consulting firm. We are currently 
seeking for the following positions: 


+ Sr. Tibco (RV, Hawk, Ingetration 
Manager) Developer 

+ IT Risk Mgmt Security Architect 

* Sun One / Siteminder Architect 

* Business Objects / Cognos 
Developers 

+ .NET Architect 


All positions require BS/MS degree 
with a minimum of 2 to 3 years of 
experience in the field. Must pos: 
sess excellent communication 
skills as well 


NET2S, 82 Wall Street, Suite 400, 
New York, NY 10005; Fax: (212) 
279-1960; Phone (212) 279-6565; or 
Email: jobus-ny@net2s.com 


Sr. Software Engineer - Maintain 
& develop Bluetooth HCI/BCSP 
s/w layer for wireless telephone 
systems developer. Evaluate 
design & suppt GSM GPRS 
EGPRS handset. Maintain & 
develop the GTT code. Bach's 
deg in Comp Sci, Physics or 
Elec Engrg reqd + 1 yr exp in 
job. Snd resume to PMCD, 1225 
Northbrook Pkwy, Suwanee, GA 
30024, Attn: D. Greer, TY. 


Large bank holding company, 
headquartered in Tennessee 
seeks experienced database 
administrator, with knowledge 
and experience in implementing 
and managing SQL Server and 
Oracle databases. Minimum job 
duties include the following: day 
to day management, administra- 
tion and maintenance of SQL 
server database using visual 
and non visual administration 
tools; monitoring server perfor- 
mance; performing system wide 
backup support of database 
system wide application tur 
and query analysis; resolve 
database capacity and replica 
tion issues; creation of databas- 
es and objects, user administra. 
tion and implementation of secu- 
rity standards; writing SOL main 
tenance scripts; and 
complex SQL queries to imp 
ment business logic for data 
transfer using BCP, DTS 
VBScript or FTPScripts 
installing SQL software and 
patches on clustered environ- 
ments; developing and imple- 
menting database backup 
strategies and database security 
is also required. The adminis- 
trator will support both SQL 
Server and Oracle database 
management systems alt! igh 
SQL Server is the primary focus 
Experience on Oracle 8i/9i 
administration in Sun Solaris 
environment is also required for 
the Oracle responsibility includ- 
ing; Writing of Unix Shell Scripts 
Minimum educational require. 
ments include the following 
Bachelor's degree in Information 
Systems or related 
Computer/Information degree 
Microsoft Certification in SQL 
Server. Knowledge and experi- 
ence with various software pro- 
grams nciuding Windows. 
Windows 95, Windows 2000 
Novell Netware Veritas 
NetBackup. Rewards comme 
surate with experience and at 
least equal to the minimum pre- 
vailing wage for a 40-hour week 
Standard benefits package 
available. Only persons with 
authorization to work in the U.S 
need to apply. EEO. Submit 
resume and three references to 
Glen Krebs 250 W. Main Street 
Suite 1600Lexington, KY 40507 


Health System Software 
Engineer to develop and support 
advanced healthcare software 
applications in a highly distrib- 
uted environment, provide real- 
time connectivity to proprietary 
Clinical repositories, serving as 
technical lead on desktop inte- 
gration, and application develop- 
ment for the electronic messag- 
ing system. Requirements: min- 
imum of Bachelor's degree in 
Computer Science or related 
field and 5 yrs working experi- 
ence in an academic or research 
institution setting. Must have 
extensive working experience 
with JAVA, Visuai C++, Win32 
API and COM/DCOM. Please 
send resumes to George Giles. 
Vanderbilt University, Dept of 
Information Management, 3401 
West End Ave. Suite 700 
Nashville, TN 37203. 


Software Engineer: Entry level 
position to assist Sr. Software 
Engr to dsgn, analyze, code. 
test, troubleshoot & maintain 
various Warehouse Mgmt 
s/ware using Advantage:Plex 
SQL Server 2000, Sybase SQL 
Oracle 7.3. Req. Bach in CS 
other related field or its foreign 
equiv based on educ & exp + 
'6mon exp. Resume to Pres. 
Datex Corp. 10300 49th St. N, 
Ciearwater, FL 33762 
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CONSULTANTS SYSTEMS 
PROJECTS: Provide compiex 
systems analysis, technical 
specifications, programming, 
design support, documentation 
and project management to user 
departments. Develop system 
and program specifications 
work diagrams and structure 
charts Analyze, review, and 
alter applications to optimize 
performance and develop pro 
jamming standards. Develop 
and/or refine f gmming tech 
procedures where 
ts exist 


debugging of applicatior 
Perform ulation studies 
determine effe anges 


software 


posals Communicate project 
priorities and status b 
menting plans, facilitating meet 
ings, and providing post-imple 
mentation support to ensure 
user needs accurately 
defined and projec tinue on 
schedule and within budget 
Keep abreast of innovations in 
techn y and make 
mendations to application devel- 
pment and main 

ronment 

B.S/B.E 

Computer Applications 

nics Engineering or 

field plus 2 years 

in job offered 

development 

disciplines is r 

lence and/or e 

nclude desigr 

and implementation 

enabled applications 
Oriented Analysis and C 

ment Extensible 

Language (XML 

Java Servlets 

Pages (JSP); Java Swing 
JavaScript HTML 

Unified Modeling 

(UML Re 

Dynamo 
Application Server, IBM Visual 
Age for Java; IBM Webshpere 
Application Developer; and 
Relational Database. Must have 
current authorization to be per. 
nanently employed in the U.S 


37.5 hours/week (8:30am-5pm 


Websphere 


Send resume to Briana Canada 
Regiona! gency 
€ 96th St 
Indianapolis, IN 46240 


Database Administrator needed 
Must have Bachelor's or equiva- 
lent in Engineering, Computer 
Science or Chemistry and 3 yrs 
experience as DBA including 
Oracle 7.3, 8.0 and 8i with 
Windows platform and UNIX 
Must also have one yr experi- 
ence in testing and validating 
system in compliance with Fed 
Regs Work ocated n 
Wilmington, MA. Send resumes 
to Richard Bianchette, 8483 
Middle Fork Road, Boulder, CO 
80302 


SOFTWARE ENGINEER to lead 
design and implementation work 
on advanced medica! imaging & 
distribution systems used in 
radiology imaging centers and 
hospitals; design, develop, ana- 
lyze, implement and maintain 
DICOM desktop viewer, applet 
viewer, QC Station and DICOM 
Communication Components 
using Java, Oracle, and XML 
Require: M.S. in Computer 
Science/Information Systems. 
Competitive salary and benefits. 
Apply with resume to: Chief 
Technology Officer, NeuroStar 
Solutions, Inc., 75 Sth Street, 
Suite 206, Atlanta, GA 30308. 





Open Text is seeking a Regional 
Director of Global Technology 
Implementation Services for 
Bannockburn, IL.Candidate will 
sell and deliver technology 
enterprise software services to 
clients in U.S., Canada, Mexico 
and other parts of Latin America 
These clients include small and 
large enterprises in various 
industries including automotive 
manufacturers and parts suppli- 
ers, telecommunications, oil and 
gas production and exploration, 
financial services, and all levels 
of government. Will use knowi- 
edge of enterprise platforms 
including: 1) SAP, 2) Maccola, 3) 
Baan, 4) J.D. Edwards and 5) 
PeopleSoft to perform required 
technology integration activities 
with company's software. Will 
negotiate terms of multi-year 
service contracts in excess of 
one million dollars. Will develop 
new technology implementation 
services in accordance with 
Secretaria de Contraloria y 
Desarrollo Administrativo for 
performance bond requirements 
and other Mexican Government 
contract regulations. Will devel- 
op contracts and service various 
governmental departments of 
defense, energy, health and 
social services in Canada and 
the U.S. at the municipal, state 
provincial and federal levels 
Will travel 35% of time to various 
locations throughout North 
America. Please fax resumes to 
(847) 267-9385 Attn: HR. An 
EEO/AA Employer, Open Text 
supports a diverse work force. 


Computer - Software Engineer 
Essex Junction Vermont 
Define, develop, and deploy 
new supply assessment models 
and supply chain management 
advanced planning system 
enhancements. Develop new 
software/architecture require- 
ments and enhancements 
Develop and document software 
specifications, success criteria 
test scenarios, and functional 
acceptance tests. Utilize knowl- 
edge of simulation and logistics 
software, SQL, SAS Enterprise 
Miner, and SAP. Requires 
Master's degree in Engineering 
or Supply Chain Management. 
Employer will accept a 
Bachelor's Degree and five 
years of more progressive work 
experience in lieu of a Master's 
Degree. Two (2) years experi- 
ence in the job offered or (2) two 
years of experience in the relat- 
ed occupation of Software 
Engineer or Supply Chain 
Manager. $90,640.00 per year. 
40 hours per week 8:30am- 
5:00pm. Send cover letter and 
resume to Attn Job No 
607971 P.O. Box 488 
Montpelier, VT 05601-0488 


Programmer/Analyst: Architect 
& implement Java2 Enterprise 
Edition (J2EE)-based frame- 
work/application to communi- 
cate with multiple legacy appli- 
cations. Design complete look- 
&-feel /navigational elements for 
web-based user __ interface 
Design new Relational 
Database (RDBMS) System 
write SQL code to implement it 
Perform knowledge acquisition, 
formulate functional & design 
specifications implement 
changes for this enterprise 
application. Must have Bach- 
elor's in Computer Science or 
Electronics Engineering, 3 yrs 
exper. in job offered or 3 yrs 
exper. in IT or programming, 
J2EE-based web design & pro- 
gramming, RDBMS database 
design & programming. Salary 
$90,500/yr. F/T, M-F, 8 am - 5 
p.m. Submit two (2) resumes to 
Case #200203190, Labor 
Exchange Office, 19 Staniford 
St., 1st. fl, Boston, MA 02114. 
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Systems Analyst - Senior 
PeopleSoft Systems Analyst, El 
Paso, TX. Maintain existing 
HR/Benefits/Payroll PeopleSoft 
systems in Oracle environment. 
Develop new applications, inter- 
faces & reports. Upgrade exist- 
ing systems as the Application is 
upgraded to keep the existing 
system in support by the vendor. 
Prepare gap analysis, impact 
analysis, design, writing func- 
tional & technical analysis docu- 
ment & coding of the software 
Work closely w/ users to solve 
functional & technical problems. 
Ensure proper documentation of 
procedures, monitor outcomes. 
& demonstrate support for 
ProLogis’ strategic goals 
through flexibility & appropriate 
flow of information. Responsible 
for A/P & Travel Expense mod- 
uies Bachelor's degree or 
equivalent in Comp. Sci., Comp. 
Engg or MIS. 4 yrs experience in 
the position offered or 4 yrs 
experience in the related occu- 
pation of Systems Administrator. 
Programmer Analyst. EOE 
MFDV. Please forward resume 
& salary req: Human Resources 
(SrPSA), ProLogis, 14100 East 
35th Place, Aurora, CO 80011 


Software engineer to design, 
develop and test computer pro 
grams for business applications; 
analyze software requirements 
to determine feasibility of 
design; direct software system 
testing procedures using exper- 
tise in Blue Coat Server, SSLP- 
KI Server, Six Sigma Green Belt 
and Single Signon. Require- 
ments: Bachelor's Degree or 
equivalent in Computer Science 
or related field and two years 
experience as a software engi- 
neer or computer programmer, 
knowledge of Blue Coat Server, 
SSLPKI Server, Six Sigma 
Green Belt and Single Signon 
Salary: $66,000/year. Working 
Conditions: 8:00 A.M. to 5:00 
P.M., 40 hours/week, involves 
extensive travel and frequent 
relocation Apply Fayette 
County CareerLink Attn 
CareerLink Program Supervisor, 
135 Waylan Smith Drive, 
Uniontown, PA 15401, Job No. 
WEB374394 


itelligence Inc seeks SAP 
Technical Solutions Architect 
with bachelor's in business, 
math, comp sci, eng. or related 
field & 6 mos exp in ABAP pro- 
gramming, reporting & interfac- 
ing in SAP R/3 system. Must be: 
SAP certified in ABAP Dialog 
Programming 4.6 ABAP 
Workbench User Dialogs, 
Business Workflow Intro, & 
Business Workflow Build & Use 
Also seeking Project Mgr with 
bachelor's in business, math, 
comp sci, eng or related field & 
2 yrs exp in implementation of 
SAP SD & MM. Must have SAP 
training in SD, Business 
Warehouse Advanced Analysis, 
Business Warehouse Data 
Warehousing & Demand 
Management Please send 
resumes to Art Blanco, Human 
Resources Director @ art.blan- 
co@itelligencegroup.com 


OH Design/Devel of Sftwre solu- 
tion sks Programmer to develop, 
test sftwre apps under supervi- 
sion; understand user req/proce- 
dures/problems to automate 
processing and/or improve exist- 
ing comp systems w/manager's 
assistance; write detailed 
descrip of prog functions & steps 
req to develop/modify comp 
prog; develop & test code. Min 
reqs: 3 mos. in job/job related 
exp., incl exp. in VB, Visual 
Interdev 6.0, Office 97/2000, MS 
Project 2000, MS SQL Server 
7.0/2000, Win NT/2000, VBA, 
VBScript, ASP, HTML/DHTML. 
Resumes to Quality Sciences, 
Inc. 27070 Detroit, #201, 
Cleveland, OH 44145. No calls 
EOE 


Consultants Needed 
Adaequare, Inc., a Dayton- 
based software consulting firm, 
seeks developers with experi- 
ence in the following areas 
ERP/CRM like Peoplesoft/ 
SAP/JD Edwards, Dataware 
housing (Cognos/Informatica/ 
Business Objects), Database 
Management  (Sybase/SQL/ 
Oracle DBAs. Must have bache- 
lor's or equiv. & knowledge of 
system & software cycle devel- 
opment & design, 5 years of 
industry experience. Must be 
able to travel or relocate nation- 
wide based on client needs 
Send resume to 10817 
Waterbury Ridge Ln., Center- 
ville, OH 45458. Or e-mail to: 
resumes@adaequare.com 
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Mono Project 


compiler and a set of class li- 
braries. Version 1.0 is due in 
the second quarter of 2004. 

“It’s definitely on our 
emerging-technology radar. 
We’re monitoring it,” said Sean 
Wheeler, director of enterprise 
technology strategy and plan- 
ning at The Allstate Corp., a 
Northbrook, Ill.-based insurer 
with many .Net-based applica- 
tions that now runs Linux only 
for research purposes. “Obvi- 
ously, if you can run it on Lin- 
ux, there’s potentially large 
cost savings there.” 

However, corporate develop- 
ers are following Mono with 
some trepidation. Several ex- 
pressed concern about Novell’s 
spotty track record with acqui- 
sitions, the developer commu- 
nity’s uphill] climb in keeping 
pace with changes to .Net and 
Microsoft’s potential to derail 
the Mono project. 

“Mono is open-source, but 
Microsoft would step forward 
and kill it if there was any real 
threat to their business mod- 
el,” said Ethan Roberts, a de- 
velopment architect at Gener- 
al Casualty Insurance Com- 
pany of Wisconsin in Sun 
Prairie. “Microsoft is under 
siege from the whole idea of 
Linux, so why wouldn’t they 
try to derail Mono’s success?” 


Mono Project 
Road Map 





Microsoft refused repeated 
requests for comment about 
its position on Mono, saying 
only that it has worked with 
partners to standardize parts 
of the .Net Framework via the 
European Computer Manufac- 


| turers Association (ECMA) 
| and the International Stan- 


dards Organization. 

No matter what Microsoft’s 
current position is, Miguel de 
Icaza, chief technology officer 
for Novell’s Ximian division, is 
well aware that customers 
have worries in the wake of 
The SCO Group Inc.’s lawsuit 
against IBM. 

De Icaza said Mono devel- 
opers have been very careful 
about integrating code from 
third parties. For example, he 
said, Microsoft wanted Mono 
developers to use Rotor, Mi- 
crosoft’s free shared-source 
implementation of its Com- 
mon Language Runtime plat- 
form, which includes source 
code for C# and JScript com- 
pilers as well as for the Com- 
mon Language Infrastructure. 

“We have a rule: If you look 
at Rotor, you cannot contri- 
bute to Mono. It’s as easy as 
that,” de Icaza said, adding 
that his group recognized the 
need to be on solid legal foot- 
ing with its work. When a 
large code contribution ar- 
rives, a third party reviews the 
changes to make sure it didn’t 
come from Rotor, he said. 

The greater challenge facing 
Mono will be catching up with 
the APIs Microsoft plans to add 
with the next version of Win- 
dows, code-named Longhorn, 
around 2006, said de Icaza. He 
said the community will need 
to rally more developers to get 
involved. Currently, 15 Novell 
employees and about 150 open- 
source community members 
work on Mono, he said. 

But some corporate users 
said they aren’t sure they will 
consider using Mono unless 
the community can keep up. 
Walt Smith, chief architect at a 
large U.S.-based financial in- 
stitution, said his company 
will consider the .Net devel- 





NEWS 


Mono Guru Speaks About His Project 


The man behind Mono, Miguel 

de Icaza, CTO for Novell's Ximian 
division, spoke last week with 
Computerworld about the open- 
source project that he helped 
launch to enable .Net applications 
to run on Linux and Unix. Ex- 
cerpts from the interview follow: 


When was the Mono project 
originally due? The Mono run- 
time was intended to be released 
a year ago or so. But it was only 
the [virtual machine] and the C# 
compiler. . . . Basically, the scope 
of Mono has been growing. 


How much of the .Net Frame- 
work will be supported? It's 
easy to say what we include in 
Mono and what we do not in- 
clude. It’s going to be the corpo- 
rate tool machine, so that’s es- 
sentially the runtime that lets you 
run applications. But the libraries 
are what makes it really interest- 
ing, so the libraries that we're 
shipping in this version include all 
of the XML functionality in Net; 
ADO.Net, which is the database 
connectivity tool kit; [and] 
ASP.Net, which includes both 


| ° . 
opment environment once it 


matures in three to five years, 
particularly in the area of Web 
services security. It will also 
consider Mono to run the ap- 
plications on Linux — but 
only if that technology also 
matures, he said. “To remain 
relevant, Mono will need to 
incorporate these new securi- 
ty features and a vast array of 
other .Net features as they ap- 
pear,” he said. “That in itself 
poses a considerable challenge 
for Novell/Ximian.” 

Smith and some other cor- 
porate IT managers said Nov- 
ell’s purchase of Ximian won't 
necessarily lend any additional 
credibility to its work. André 
Mendes, chief technology inte- 


gration officer at Public Broad- | 


casting Service in Alexandria, 
Va., said he’s interested in 
Mono and Novell brings some 


: ally up to Novell,” 





support for creating Web services 
and creating Web applications. 

The two big missing pieces are 
called Windows Forms, which is a 
technology for building client ap- 
plications as opposed to Web ap- 
plications, and we're also making 
a technology called Enterprise 
Services, which is used for trans- 
action management. 


How would a developer work 
around the missing client 
functionality? We have our own 
set of libraries for doing client 
functionality. We just don’t have 
one that will transparently move 
your Windows client apps to Lin- 
ux. We have something which is 
Unix-specific today. But by the 
end of next year, we will have the 
Windows compatibility. 


Do you have any concerns 
about Microsoft raising intel- 
lectual property issues? My 
main concern with Microsoft is 
not that one, because .Net is basi- 
Cally a retooling of Java. . . . Mi- 
crosoft should be concerned 
about .Net. My main concern real- 
ly is Longhorn in the 2006 time 


degree of revenue and cash 
flow. But he added, “Quite 
honestly, Novell is one of those 
companies I could never figure 
out. They lost the competitive 
advantage they had in the mar- 


| ketplace.” 


“I would really like to see 


| Novell become a legitimate 


player in this space, but it’s re- 
said Gener- 
al Casualty’s Roberts. “One 
thing that Novell seems to be 
good at is killing some solid 
technology.” 

De Icaza said there are areas 
where Novell has been helpful, 
such as directory services, 
which Mono wasn't going to 
have until Novell employees 
volunteered to add them 

Novell Vice Chairman Chris 
Stone said through a spokes- 
man that the company fully 
supports the Mono project 


COMPUTERWORLD December 1, 2003 


61 


frame. They're adding a lot of 
APIs, and that's going to be hard 
to catch up with. 


What kind of reaction have 
you gotten from Microsoft 
about the Mono project? The 
only people who | have talked to 
are their engineers or the ECMA 
[standards] committee . . . and so 
far, it’s been great. They're very 
receptive. They help a lot with 
every problem we have in the 
spec. . . . They're very supportive 
at the engineering level. We've 
had a few high-level talks with 
them, but nothing really concrete. 


Can you foresee any potential 
legal issues? The only potential 
legal problem is whether there is 
a patent on [any] API, and we 
have a couple of options when 
we're dealing with patents. The 
first option is [to] look for prior 
art, because Microsoft might be 
granted a patent that they don’t 
really deserve. . . . lf we cannot 
find prior art, then we will have to 
remove that functionality from the 
Mono runtime, and for customers, 
we'll negotiate a license for the 
patents with Microsoft. 

~ Carol Sliwa 


and is even considering pro- 
viding the Mono environment 


on NetWare so .Net applica- 

tions will also be able to run 

on that operating system. 
But some corporate users 


| said they don’t think they will 
| be running their .Net applica- 
| tions on operating systems 

| other than Windows. “ 
| many of them will switch be- 


I doubt 


cause of this,” said one devel- 
oper who works for a govern- 


| ment agency. 


“In reality, I don’t think we'll 
need it,” said Richard Eber, di- 


| rector of development ser- 


vices at Hawaiian Electric Co., 
which has substantial invest- 
ments in Microsoft technolo- 
gy. He said that even though 
his company may add some 
Unix systems in the future, 
those will be for running Java- 





based applications. @ 43168 





Periodical postage paid at Framingham, Mass., and other mailing offices. Posted under Canadian International Publication agree 
weekly: except a single combined issue for the last two weeks 
versity Microfilms Inc., 300 N. Zeeb Road, Ann Arbor, Mich. 48106. Computerworld is 
registered with the Copyright Clearance Center (CCC), provided that the base fee of $3 per copy of the article, plus 50 cen’ 

permission to reprint may be purchased from Renee Smith, Computerworld Reprints, c/o Reprint Management Services, Green’ 
www. reprintbuyer.com. E-mail: reprints@computerworld.com. Requests for missing issues will be honored only if received wi 

$295 per year. Subscriptions call toll-free (888) 559-7327. POSTMASTER: Send Form 3579 (Change of Address) to Computerworld, PO Box 3500. Northbrook, Ill, GOO65: ‘3500 


$250 per year; Europe — $295 per year: all other countries 


in December by Computerworld, Inc., 500 Old Conn 
indexed. Back issues. 


f available. 


5. 01701-9171. Cc 


Framingham. Mass 


ement #40063800. CANADIAN POSTMASTER: Please return undeliverable c 
pyright 2003 by Computerworld Inc. Ail r 


opy to POE 


from the circulation department. Photocopy rights: permission to photocopy fo: 


page. is paid directly to Copyright Clearance Center 


60 days of issue date. Subscription ra 


27 Congress St $ copies 
id Corporate Center. 1808 Colonial Village Lane. Lancaster. Pa.. 17601. (717) 399-1900, Ext. 172. Fax: (717 399 8900. We 
ates: S5 per copy: U.S. - $99.99 per year: Canada 


Saiem, Mass. 01970. Repr 


$130 per year; C 


entral & S 


rio NSA 7C9._ Com 
world can be pur 
2 is granted by 


Amenic 





62 COMPUTERWORLD December 1, 2003 


THE BACK PAGE 


“RANK HAYES #® FRANKLY SPEAKING 


Gadget Guy 


OU KNOW WHO HEIS. (It’s almost always a guy.) He’s 
the user who loves gadgets. He’s the first one to have 
every new high-tech toy, from the Apple Newton to a 
wireless modem to a camera phone. He used to ask you 
to support his gadgets when he tried to use them for 
work. And maybe you did, back when you still had the staff and bud- 


get to cater to one user’s whims. 


By now, you’ve long since stopped that kind of catering. And by 


now, he’s long since stopped asking. 


But he’s still bringing his toys into work. And that means he may 
be one of your biggest security problems. 


Think about it: Handheld computers enable 
users to walk out the door with megabytes of 
proprietary data in their pockets. Home wire- 
less networking equipment can open up holes 
in your network big enough to drive a truckload 
of hackers through. A webcam with enough res- 
olution is a virtual window into an office. 

And those are just the innocent problems. In 
the hands of a disgruntled employee, gadgets 
are just about guaranteed to be dangerous. 

You can’t do much about those cases. But as 
for the gadget freak who finally stopped asking 
you for support, now might be a good time to 
renew his acquaintance. 

After all, the holidays are coming. A new 
wave of gadgets will hit your office soon. 

And your gadget guy won’t just be bringing in 
new toys of his own. He’ll also be the go-to guy 
for other users who get gadgets this year. They 
already know that your IT department doesn’t 
have the time or resources to help them with 
home-quality IT gear that’s not approved for 
use in the office. 

So when they have questions, he’ll have an- 
swers. And because he knows IT 
doesn’t want to hear about this 
stuff, he won’t bother asking you 
for help or guidance. 

That’s a sure recipe for problems. 

How do you suppose all those 
wireless access points popped up 
on your networks last year? A gad- 
get guy brought them in. He helped 
out less sophisticated users who 
liked the idea, too. But he didn’t 
think about encryption or security 
or any other complications that IT 
thinks are important. 

By the time you figured out they 





were there, wireless access points were proba- 
bly such a scandalous security problem that 
you just ripped out the receivers and banned 
their use anywhere, period, no exceptions. 
Thus guaranteeing that the gadget freaks 
would never want to ask you for help again. 
The same thing has happened, in less visible 
ways, with handhelds and digital recorders and 
cameras and all-in-one cell phones. They’re all 
potential security problems. They’re all easy to 
connect to PCs, thanks to USB ports, and they 
all have clever (though unauthorized) business 
uses. In fact, to a user who loves gadgets, there’s 
no such thing as a gadget that can’t somehow 
be used at work. 
So that gadget guy can either remain a prob- 
lem for you this year — or become a resource. 
Find him. Enlist his help. Explain your situa- 
tion. Teli him you don’t want to say no to all the 
creative uses that users put gadgets to, but you 
can barely handle the workload you’ve got. 
Promise that you'll do your best to help make 
those gadgets safe and practical if he’ll make 
sure youre not blindsided by gadgets you didn’t 
know about. 
Yes, it’ll mean a little more effort 
for you, figuring out those gadgets. 
And with budgets and staffs still 
squeezed, that’s a problem. But if 
you can get the gadget guy on 
board, he’ll do a lot of the work. 
And instead of hiding gadgets from 
you, he’ll keep you in the loop — 
which means a lot less effort look- 
ing for gadgets gone wrong. 
Because the question isn’t 
whether the gadget guy will be 
there — it’s what kind of problem 
he'll be. @ 42894 
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it’s Easier That Way 

IT director pilot fish orders up a new cell phone for on- 
call support staffers to use for after-hours emergen- 
cies, and he has the voice-mail system configured to 
page the phone whenever a message is left for the 
help desk. “Three days later, | learned that the on-call 
support person was asking to have the voice-mail 
paging feature reconfigured to match the old system,” 
says fish. “Turns out the old system was configured to 
page only during normal business hours!” 


Patience 
User has trouble 
attaching a doc- 
ument to an 
e-mail message 
~ she keeps getting two 
or three copies. Show 
me, says support pilot 
fish. User clicks once to 
attach, but the attach- 
ment doesn't appear 
quickly, so she keeps 
clicking. Be patient, fish 
working, but you need to : 
give it time. “No,” says 
user. “I put my ear right 
beside the computer af- 
ter ! try to attach, and 
it's completely quiet. It is : 
not working.” 


That'll Do It 

In this factory, coaxial 
cable connects 200 
terminals to the main- 
frame. When another 
100 are added, the old 
connections start going 
flaky, and IT pilot fish 
can’t spot why - until he 
has someone trace the 
cables. “The hole com- 
ing into the computer 
room through the ce- 
ment blocks is 8.5 in. 
in diameter,” he says. 
“The hole in the stain- 
less steel finish plate 
was 8 in. As more cables : 
were strung through the 
hole, the older ones on 
the bottom were pushed 
against the thin sheet 
metal - ie-nidpamaaied: 


Next Time, 
— Me 


TANK tons to this IT pilot 


fish with a 


floppy disk that's com- 
: immediately. You have a 
: brand of floppy drive 

: destroys disks, fish tells 
: her, so don’t use it. “Lat- 


er that day, she pre- 
sented me with another 


: blown floppy,” grumbles 
fish. “How did it hap- 
; pen? She said, ‘Oh, | 
i wanted to prove you 


ee: 


; gets a request to fix a 

? malfunctioning server, 

: he has trouble finding 

: it. “It was actually one 

? room over from the 

i Server room, sifting on 

: top of a huge, well- 

: marked transformer,” 

: fish says. “When | did 

: get it up and running, it 
: He keeps it going, but no 
: one ever seems to ac- 

: cess it, so he does a little 


: paying $800 per month 


: fora data feed,” says 
: fish. “But no one was 
: from it anymore - and 


hadn't in at least two 


FEED THE SHARK! Send your true tales of IT life to 


You snag a snazzy 


sharky@computerworld.com. 
See 
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A) Lunch 
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¢) To leave ty S 


p) Help! 


e state: 
else? Pleas 
Anything 


We know your time is precious. That's why at Softchoice, we deliver the answers you need 
without the obstacles. We'll give you immediate access to smart people who wiil pick up the phone 
whenever you call. No automated phone systems. No hassles. Novel concept, don’t you think? 


For software or hardware to run your business, think Softchoice. We can save you time, 
money and maybe even your sanity. 


softchoice 





AT SOFTCHOICE, GOOD 
THINGS HAPPEN IN 3’S 


WE GET 
| YOU WHAT 
@ | YOU NEED 


| 
Everyone likes a good selection. With over 280,000 products to 
choose from, we also think giving you easy ways to find the 
right technology is just as important. Our online search tools 
are designed to make browsing and comparing products 
simple (raise your hand if you like simple). And if you're ever 
looking for clarification, or some friendly advice, just pick up 
the phone. We promise immediate access to someone who 
can answer your questions 


| WE GIVE YOU 
| THE BEST WAY 
@ | TOBUYIT 


So you've found the perfect solution. Now, how do you get the 
best price? The easiest approach (we think) is to ask the 
experts. At Softchoice, strong relations with industry partners 
mean significant savings for you. We lend a hand with 
navigating the wide range of volume purchasing programs and 
leasing options so you always get the greatest manufacturer 
discount possible. Our goal is to help you find the best way to 
purchase your technology 


WE HELP YOU 
| MANAGE WHAT 
@ | YOU'VE GOT 
It's a fact. Staying on top of what technology you have and how 
it's being used can actually save you money. At Softchoice 
we'll help you do this through purchase history reporting, 
license tracking, and IT asset management services. So when 
you're doing a software migration, making your budget or 
upgrading your hardware, you've got the information you need 
to make smart decisions. Would you have it any other way? 





FOR PRODUCTS, PRICING 
ANSWERS AND ADVICE 
CONTACT SOFTCHOICE 


CALL 1.877.967.3737 
WWW.SOFTCHOICE.COM/BROWSER 
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€ Disaster Recovery: 


@ To Be or 
i Not To Be 


The great power outage of 2003 cut the juice on 

50 million people and left many businesses groping 
in the dark. Considering the other challenges arrayed 
against uptime, it's apparent that a solid recovery 
plan - and proven backup, storage and surge protection 
- can make the difference between taking things 

in stride and just plain falling down. 


Delivering End-user Recovery 


IBM's Rapid Restore technology is a one-button recovery and restore solution 
to help you rescue lost data, applications and operatin ms with the touch 
of a button. By creating a complete image backup and storing it in a protected 
partition on the hard drive, IBM Rapid Restore sstore the complete image 
often in less than 20 minu This unique software comes preloaded on all 

2w IBM ThinkPad notebooks and ThinkCentre desktops. By offering an end- 
user recovery program, you'll reduce ¢ itime and avoid help desk calls, 
freeing up IT resources to focus on more important things 


To learn more, go to www.softchoice.com/browser 
The IBM Thinkpad 


IBM Rapid Restore helps protect against: T40 2373 with Rapid 
e User-induced software crashes Restore™ 

¢ Software application and operating system corruption a 

e Virus activity and intrusion 


Seer 
IRS or 


CRE aime eerie em el-1-1) 
prioritized into mission-critical 
or expendable? 


Business 
Partner 


















Keep in Mind Kingston Memory Upgrades 
: With Kingston's 100% compatibility program, the memory upgrade you choose 
¢ ls your disaster recovery plan for the IBM Thinkoad T sak , 5 
sisted togulariy? for the IBM Thin ‘pad 140 is designed ork right its t 

: Get virtually any configuration up to 2GB. 148... s932 ¥ Kings on 
¢ ls business continuity top of 
mind for your business leaders? 


¢ Do you collect information 
about network particulars when Get the MONSTROUS Capacity of aSuper Drive Quantum 


Ciel em TMU ke . 5 
ploy The Quantum SDLT 600 Tape Drive delivers huge capacity 


¢ Do you plan according to higher with the fastest native transfer rate, along with media 
CTCL TMMLET (Ig delivering the lowest cost per gigabyte available 
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APC: Defeating Downtime 


American Power Conversion (A 
against some of the 

including data loss, ha 

and temperature fluctuations 


eck out the API 
servers and net 
Lifetime Equipment Protection Policy 


wer protection for 
anty & $150,000 


VERITAS 


for Windows Servers 


Don't be Scared - HP Makes NAS Simple 


T tnraneWoarke A 


Backup Basics 


New! VERITAS Backup Exec 9.1 


CR TE Cite) 
In Corporate Surveys: 


This next generation backup and 


tore solution pro 


VERITAS 
Backup Exec” 


9.1 for Windows Servers 


laptop < 


See R LoL SMU ANC e Hea OLA) 


* 64% admit flaws in their backup 
or disaster recovery plans 


Ca Va MTR UTM cm (etm atts 
atUmeLO ULE LaNy 


SACS MHOm ase La mooie lt leg 
external audits of storage systems 


What is this new Desktop and Laptop Option? 


It provides cont 
the office or on tt 
to existing netw 


administrator or the user. For mor 


Push-Button Desktop Disaster Recovery 


Maxtor OneTouch External Hard Drives make it easy 

to store, recover and make backup copies of files. The 

drives have capacities up to 300GB, connect to FireWire 

or USB ports, and back up with the Maxtor 

OneTouch button, making 
a complete PC restore easy 
every time. So if the heavens 
deliver a catastrophic event, 
your system will be covered 
$400 
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go to www.softchoice.com/browser 
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0 www.softchoice.com/browser 
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KEEPING PACE 


7 Steps 
to Licensing 
Nirvana 


Keeping pace with technology - and your competitors - starts with 
having the latest products, but it's more than just this. Maintaining 
your edge also means ensuring users take full cae of the technology 
at their disposal. Microsoft's Software Assurance program is designed 
to help businesses succeed in these areas while making it easier to 
forecast annual software budgets more accurately than ever before 
For all the details and more, go to www.softchoice.com/browser 


Keep It Simple - And Keep _— Put Your Investment 


Your People Happy 


At a time when training budgets are 
being r 


Simplify your budget by 
1 spreading payments annually, 
instead of in one upfront 
payment. Gr: exibility in managing 
technology expenditures lets you 
reduce initial costs and for 
software budget requirer 
three years in advance 


Bs Ttware 
€ program ellen welcome 
y aaa classroom learning 


former s 


oft's eLearning delivers 
student experience to regular 
; and IT professionals si Give 
st support 


With the right to run new 
versions of licensed software 
as they become available, you can esources and let pi uf a their 
é lated with skills through interactive modules and 
tutorials on various applications 


Software Assure (SA) also 
includes training vouchers for 
select cot from Microsoft Certified 
Technical Education Centers 


reduce the c 
acquiring new re 


lengthy pu ycles, while 
reaping the benefits of the latest 5 
technolc 
with Software 
ce make it it easier to 
versions, updates, 


7 Through the Home Use Program, 
) all desktops and 


your people can get a licensed 
_ Mic Office desktop 
programs so they can work from home, 
upgrade eae both 


copy of 
your own pace 


yftware Assurance customers 
4 can also leverage the Employee 
Purchase Program to give employees 
significant discounts off of retail pricing 


on Microsoft's most popular productivity Assurance 


and consumer products ne Licensing 


Microsoft 
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Did You Know? 
Home Use Rights 


as Ce Nee EOL 


E Did You Know? 
este) SIN) CAI 


reece eeu 
sda lian baeaboenaenanalal 





Pumped Up PDAs 
for the Enterprise 


At the most basic level, handheld devices offer an all-in-one replacement 
for virtually any personal information tool you can imagine. But they 
can be so much more! Wireless features can give your corridor warriors 
in-house instant messaging, data access, printing and data synchronization 
from anywhere within the office. Now just imagine what bar code 
readers, portable printers, digital cameras, portable presentation devices, 
and thousands of PDA applications could do for you in the field? But 
before you go changing the world, here's a look at the latest essentials _—— 
for putting your PDA plans in motion. www.softchoice.com/browser 
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Charge, Organize and Protect 
ALL your Mobile Devices 


The NEW APC TravelPower™ Case y HP Will Set You 


This innovative carrying case is 


Manage y 


designed to both protect and power ; 5 


your notebook computer, mobile phone 
AND handheld - all at the same time! 


reduc 

bulky transformer blocks and p 
adapters are no longer necessary 
$100 


) mobilize you 


The Latest in 
PDA Memory Boosts 


Information Without Limits Kingston's Secure Digital (S 


Check out Pumatech's 
Enterprise Intellisync for 


‘ card 
centralized management. gieshesen 


stamp! 9% Kingston 
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SMART MONEY | 


| 


Cashing In 
On Document 
Management 


When was the last time a dash to the printer made you think 
about saving money? The truth is effective document management 
can make a huge difference to your bottom line. And we're not 
just talking toner! Check out the host of new tools available, 
including multi-purpose devices, new workflow software, and the 
‘digital ink’ of Tablet PCs. We've got technology that's changing 
the possibilities for document workflow, with even more online 


at www.softchoice.com/browser 


Ask Yourself: 
Does Your Printer... 


CRS TmT Tsar ie irate 
ee 
pm - 


LV 


Improve your Printer ROI 
with OKI 


After applying 
like c 


“payotsaneiond ___ HP Scanjet 8200 Series 
and p life to calculate the 
total cost of printing, you'll find 
the OKI process is simple, smart, 
and efficient. OK! color printers 
sell on value, and the C5300n tops 
the charts. This printer can replace 
slower machines 

- and stretch 

your budget! 


Turn paper files into digital files with 
the HP Scanjet 8200 ser canning 
unatte 1 with Ss up to 25 pages 
per minute at 4800-dpi optical 
resolution and 48-bit color along with 
multiple scanning attachments, the HP 
Scanjet 8200 series scanners are perfect 
for any small business, kgroup 
document man nt needs. The HP 
Scanjet 8200 series connects to your 
PC quickly and easily with USB 

or SCSI* 


$1,056 


OKI 
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Save $ The HP Way 


| 


invent 


HP Color LaserJet 4600 


The HP Color LaserJet 4600 series 
printers with HP smart printing supplies 
are a reliable and affordable way to get 
high-quality color laser printing at the 
same speed as black and white. The 
efficient, simple design offers easy 
networking, management, 
and maintenance _ 
features so the 

entire workgroup 

can benefit from 

in-house color 

printing that gets 

results. $1,979 
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Graphics on the Go for Tablets 


Designed for Windows® XP Tablet PC Edition, Corel 
Grafigo™2 uses pen-based business graphics software 

to help you create, annotate and collaborate by sketching 
on digital images and forms. Whether in a meeting or 

on the , Corel® Grafigo™ 2 will enable you to capture 
ideas, annotate documents 


na COREL 


Grafigo 2 
Tablets do it with Digital Ink dest 92h NS 


HP's Tablet PC allows you to capitalize on the convenience 
and simplicity of paper and pen -- without all the paper 
With the ability to recognize and translate your natural writing 
style, store and exchange information as ‘digital ink’, and do 
cool things like draw free-hand diagrams, this sleek device 
is providing compelling reasons to change the way we do 
things. compag rc1100... s2.398 WWW.SOftchoice.com/browser 


Mastering Document 
Exchange aT a Ela) 


Scansoft's PaperPo e is the ; Multifunction Units 


most ef : 
Brother shane neeee #0 Manage fewer consumables 


Delivers It All ’ 8 RS ra 
The Brother MFC-882 nvenien V SB ela] 
is a 5-in-1 networkable fiatbed laser ciency of docum ba 

multifunctior er combining See CU cme acyl aes) 
performance, connec and reliability 2asy-to-use ¢ by supporting fewer devices _ 
It delivers ultra-sharp monochrome top application _ ‘ eo ee 

laser resolution at the fastest print saving both time 
speed in its up to 17ppm. With 

its PC fax capability you won't have 

to depend on paper documents, saving 

time and paper costs. sés1 
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Fight Spam: 


Become 
King of 
the Ring 


Sometimes the best offence is a good defense. Nothing could be truer when you're going toe- 
to-toe with one of the biggest epidemics of the 21st century. According to several recent reports, 
there's more spam cruising around the internet these days than real e-mail. That means added 
security risks, lower employee productivity, enormous pressure on bandwidth and the very real 
threat of hostile workplace claims resulting from offensive content. But who says you have to let 
spam back you into the corner? With an arsenal of solutions to block unwelcome e-mail at the 
gateway, server and desktop, Softchoice can help you knock out spam for good. Check out our 
leading spam fighters, and then drill down online at www.softchoice.com/browser 


Did You Know? 
Spam Stats 


Se Selle aes Ue een ere UIR OL) 
* 90% is sent by 200 ‘king spammers’ 
*The average employee gets 13.3 
SMU Tlt eRe Lely 

«The average employee spends 6.5 
minutes per day dealing with spam 


ba (ole Rata R Ul le eee (<1 -18 
corporate spam-blocking products 


EXPERIENCE OUR S] 000 
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AND YOU QUO WIN | SEE PAGE 13 FOR DETAILS: 


Stop Spam at the Gateway D rREno 


Trend Micro” Spam Prevention Service 


#1 Global market share leader in server-based virus protection, gateway and email 
server protection. Spam Prevention Service is a high-performance, anti-spam 
application designed to block non-productive and malicious spam at the gateway. 
Spam Prevention Service employs patent- 

pending heuristic technology that evaluates, 

identifies and monitors existing and new Trend Micro Spam Prevention Service 
messages using multiple email 

characteristics, providing highly accurate 

spam capture rates with very low false 

positives. Designed to integrate seamlessly 

with Trend Micro's anti-virus and content 

security solutions, Spam Prevention Service 

analyzes messages in-memory to address 

the performance and scalability 

requirements of the global enterprise 

www.softchoice.com/browser 
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Wanna Play Rough? 
Bring Out the Hardware! 


McAfee's SpamKiller Appliance 
For pricing please go to www.softchoice.com/browser 


Combine hardware and award winning software with 
configure-and-forget solutions to make anti-spam a 
instant, complete, and low-cost. Plugs easily into virtually a 

scans SMIP traffic for spam and malicious content and SMTP. HTTP. FTP, and POP3 
traffic for viruses and other hostile code. Get rules-based 

anti-spam protection, with a catch-rate of up to 95%, McAfee 
and a false positive rate of less aagaetg Ree lpr 
than 0.05%, and unlike 

most solutions, you can 

install this at the 

gateway and e-mail 

server for more 

complete protection 


integ 


Spam Attack 


Combination 
Punches 


Softchoice has heavyweight Spam fighters 
for every type of network defense. 

Get your combos ready - this isn't a 
one-punch fight. 


Gateway 


Server 


Desktop 


*Learn more at www.softchoice.com/browser 


Chop Spam from the Server with MailMarshal 


A critic's favorite, Netlq MailMarshal is a fast and easy to use server-based 
scanning solution to help you control the type and subject matter of material 
entering or leaving an organization via email. For small businesses, it can b 
to replace the existing mail server for up to 500 users 

Larger organizations can co-locate the product on the © neti 
SMIP server, or on a dedicated machine © Work Smarter. 


e used 


Continues on page 12 > 


Sybari Delivers 
Enterprise Anti-Spam! 


Known for best of breed mes 
security solutions, Sybari now deliver 
Advanced Spam Defense (ASD)! This 
robust, scalable anti-spam solution effe 
Ctively reduces the impact of u 
ur aaa networks 
esigned 
s a stand-alone 
real time detection 
service, ASD 
delivers accurate 
and proactive 
spam detection, 
customized to 
seamlessly 
support your 
needs and 
infrastructure 


Sybari 


Reclaim Your Inbox 


¢ Protect your address: Avoid 
putting your e-mail address on 
cle Ke le heigl (eh) 


¢ Use multiple e-mail addresses. 
Save one for filling out forms 


Oat crLOMOAl eM eter 
carefully. Be sure to “opt-out” 
Faia mg 


How do Spammers get 
your Email Address? 


Chances are there's spyware 
on your systems that's “phoning 
home" information about your 
users whenever they're online 
Find out what's lurking on your 
PCs - look for PestPatrol at 
www.softchoice.com/browser 


Protecting Computers from Hidden Threats 


eee 


Stronger Spam-fighters! 


Another mark of a growing trend, 
anti-virus developer Sophos has 
recently acquired ActiveState, 

a leading anti-spam specialist. 


1.877.967.3737 | softchoice 





Tackle Spam and More 
with CA's Content Security 


According to CA, the a la carte approach to content security is in trouble. Although 

many point solutions exist, they pose challenges such as prioritization, budget limits, 
roperability, intec 1d managing policy deployment and enforcement 

across multiple, disconnected platforms. The increase in content threats, such 

as spam, confidentiality breaches, and offensive content, have made it clear that 

the solution is not just a security matter - both security and business needs must be 

addressed. There's been a shift in today's market needs and requirements that demand 

a new model to address today's content challenges Ss increasingly important to 

)k at content security holistically - from an enterprise-v addressinc 

rity concerns and policy enforcement across various entry points and protocols 
respond to blended threats, spam, legal liability, and other content issues 


s answer: elrust’ Secure Content Management 


Learn more at www.softchoice.com/browser 


Offensive Content 3 


The Evolution of 
Content Security 


ea aarel iM A@ legate 


Inflection Point 

of the 

Content Challenge, 
Which Requires a 
New Approach to Security 


ICM eee 


1980s 1990s 2000 


eTrust” Secure Content Management provides: 


Spam Filtering - protects against unwanted and unsolicited email, inc 
business productivity and network bandwidth 


Email and Content Security - keyword identification safeguards against the 
transmission of proprietary or confidential information outside the organization 


Web Security - you set the policy-ba eb URL filtering 


Protects you from legal liability should an employee visit an inappropriate 
nd offend a coworker 


¢ Employees won't waste time on non-productive web surfing 

e Policies preventing the downloading of MP3 and other large files 
Malicious Code Defense - proactively protects users against a variety of active code 
attacks that can automatically execute when visiting a website or using email 


Antivirus Protection - dual antivirus engines provide "double protection" to help 
ensure users are always protected 


a) Computer Associates® 
Soe 


softchoice | WWW.SOFTCHOICE.COM/BROWSER 


CA Completes the Puzzle 


eTrust” Secure Content 
Management is an integrated 
solution that builds on the 
strengths of existing antivirus 
technology while taking content 
security to the next level, 
offering the best all-around 
protection for corporate 
networks for blended threats, 
spam, web security and 
everything in between. 


Secure Content Management 


Ela 
It's Not Just Spam 


It's also adult sites, online music 
EUR ELC RSLs 


Content filtering is a matter of both — 
enterprise productivity and 
potential legal liability. 





EXPERIENCING SOFTCHOICE LIVE QUOTE 


COULD WIN YOU $1000 


INFoemer TECAN of °6T PEcistems¢ 


Névee LecKep Se Goop / 


We think Live Quote is the coolest way to shop for technology that we've ever invented. By combining 
the latest Flash technology with live, expert advice, Softchoice Live Quote lets you follow along in your web 
browser as w \ customized quote —all in real e. That gives you the perfect opportunity to ask 
questions and ensure you're selecting the right technology ¢ j. The end result? You get a cool way to 
perfect your software licensing and hardware selection, and we get to be proud 


To try Live Quote, and get your chance to win a $1000 Softchoice shopping spree, call 1.877.967.3737 and 
ask for the Live Quote contest demo. Or visit www.softchoice.com/browser for details 


softchoice 





HORSE POWER 


Get with 
The System 


300 million users worldwide rely on Word, Excel, Outlook and PowerPoint 
to do their jobs. Now Microsoft has taken those oh-so-familiar Office 
productivity tools and extended their reach to provide a comprehensive, 
integrated system - the new Microsoft Office System. Designed to 
work alongside other Microsoft servers and programs, the Office System 
packs serious horse power when it comes to enhancing business 
intelligence, process management, personal productivity and collaboration. 


Microsoft Office 


2003 Editions Ce ae Co TC a aT 


Basic 
_ Standard 
SS all 


The New Office Professional 
Editions Include: 


* Enhanced collaboration tools 


¢ Information Rights Management 
(IRM) functionality that allows you 


Mo er 
from Microsoft* that you can — 
TCR eR Tet g Oe Lae 


For more information, go to » 


PRU RIA cig 


SU enn tn a Tiger ce aan 


to protect sensitive business 
information by giving you greater 
control over who can open, 

copy, print, or forward information 


¢ Support for industry-standard 
Extensible Markup Language (XML) 


Oo Microsoft 


aor Pe (ih i a | 
COOFICE om eer sem en as ce BG 


| WWW.SOFTCHOICE.COM/BROWSER 


| 


softchoice 








Process Management Personal ee 


Ask any project manager about the keys to success and they'll 
tell you: process, process, process. Good thing the Microsoft 
Enterprise Project Management (EPM) Solution provides the 
perfect answer for organizations requiring strong coordinatior 
and standardization between projects and project man 
centralized resource management, or higher-level reportinc 
about projects and resources 


The EPM Solution consists of Microsoft Office Project 
Server 2003, which is the platform that supports project 
and resource management and collaboration capabilities A look at personal productivity tools wouldn't be compl 
Users connect to Project Server through Microsoft Office with tioning Microsoft OneNote 2003, the 
Project Professional and Microsoft Office Project Web ote program that gives you one place to capture 
Access to save, retrieve, and interact with the Project Server ultiple form an ion, including typed and handwr 
data. The EPM solution allows project managers to schedule notes, hand-drawn diagrams, audio recordings, photos 4 
projects, assign team members from a central resource pool pictures from the Web OneNote 2003 then helps you org 
to project tasks, and save their information centrally to so and reuse that information the way you - so you can 
it can be shared with others Jetter manage the information overload you face each day 


imon searches each tim 


Y3MOd 3SHOH | 


They're Better Together - Built with other Microsoft technologies in mind, the Microsoft Office System allows you 
to integrate desktop and server technology to provide business users with better access to information, improved collaboration 
and increased productivity. For all the details on Microsoft's latest releases go to www.softchoice.com/browser 


Sta et 1 Solutions 


Project Server Office Systems 
2003, SharePoint Solutions Directory, 
Portal Server Office Solutions 
2003, Live eee Accelerators, 
Enterprise Project 
Management 
Solution 


Effective Teaming Business a en 


For many organizations, improving reaction time is all about If you're looking to improve the way you share, 

effective communication and collaboration. To address this need, epu nformation in your organizat 

Microsoft Office SharePoint Portal Server 2003 allows you ans Microsoft Office InfoPath 2003 is a new progra 
to develop an intelligent portal that seamlessly connects users, 1 the NV soft Office System that can | f 
teams, and knowledge so that people can take advantage nformation flexibly and efficiently in rich, dyn 


of relevant information across business processes n collected can be integrated with a broad 


SharePoint Portal Server 2003 provides a single point of access ange of | 25S processes because InfoPath supports any 
to multiple systems such as Microsoft Office System - cust ed Extensible Markup Language (XML) schema 
business intelligence and project management systems. User and integrates with Web services. InfoPath 2003 also 

can extract and reuse timely and relevant information from ntegrates with Microsoft Windows® SharePoint™ to further 
systems and reports, and quickly locate and access documents, enhance team collaboration 


projects, and best practices across the company To learn more, visit www.softchoice.com/browser 





EXPERIENCE OUR] A THOUSAND BIICKS| 
LIVE QUOTE a ae ee 


AND YOU COULD WIN | or VISIT WWW.SOFTCHOICE.COM/BROWSER 


1.877.967.3737 | softchoice 





New Technology: 


In the world of IT, there’s nothing more exciting than a new addition to the family. 
Check out these latest and greatest arrivals with pricing, specifications and 
more at www.softchoice.com/browser 


NEW ARRIVALS | 


Macromedia MX 2004. Run with it. 


—— Streamline web development with the integrated tool set that includes, Dreamweaver, 
Flash, Fireworks and FreeHand. 


¢ Get professional-level functionality and control for 
Caen every aspect of web development with a complete suite 
pes Ae eading web tools 


* Take advantage of a consistent user interface to make 
using multiple applications easier 

¢ Streamline your design and development workflow 
with sear tegration across applications 


Macromedia Studio MX 2004 includes: 


STUDIOMXx 


¢ Coldfusion MX 6.1 Developer Edition (Windows only) 


The New Observer Suite SSNETWORK’ 
It's Not Your Dad's Protocol Analyzer INSTRUMENTS 


The latest in complete network monitoring from 
Network Instruments. 


e works 


vork (LAN 


eal-time statistics, 
ding and reporting 
istom-iz ; and alarms so you're the first 
bout network problems. Observer Suite even 
offers Application Analysis and Advanced Multi-Probes 
for the next level of remote monitoring. Now try doing 
all that with your Dad’s protocol analyzer 


YOUR ORDER CALL 


softchoice | WWW.SOFTCHOICE.COM/BROWSER 





Collaboration Solutions: 


s Get On 


a 
a 


t The Same Page 


Businesses today often incorporate a widely dispersed network 

of co-workers, suppliers, partners and customers. With this far flung 
web of associations comes the challenge of working together effectively 
Good thing the latest electronic connection tools are so effective 

at bringing people together. As the following solutions show, when 

it comes to productivity, distance should be the last thing on your mind 
For more info and pricing, go to www.softchoice.com/browser 


IBM Lotus’ Instant Messaging 
and Web Conferencing (Sametime’) 


Sametime Meeting Room - Mi Bf! EG 


WRQ Makes 


Host-Access Secure 
WRO Reflection® for the Web is 1 Bel ahi a 


terminal-emulation software that * Long-distance telephone calls 
gives browser users inside and Se UN Sm Ce Ni 
outside the firewall secure access i ns ¢ E-mail storage 
to applications on IBM, HP. UNIX, 
and OpenVMS systems. With 
Reflection's advanced migration, 
administration, and automation 
capabilities, you can also manage 
your evolving desktop environment- 
while cutting total cost of ownership 
Enhanced security ensures safe 
access to host information for all 
users-local and remote. Admin- 
istrators have complete control 
over which 
emulation sessions 
a user Or group 
can access 


OWRQ 
suppliers can immediately and 


EXPERIENCE OUR LIVE QUOTE AND YOU COULD FO R DETAI L S 
| Wi N ST O O00 SEE PAGE 13 OR VISIT 
WEG WWW.SOFTCHOICE.COM/BROWSER 


1.877.967.3737 | softchoice 
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HIGH TECH HOROSCOPES | 


Src 
a cel 
Despite your sleek new 
Pe Hes RU ORT oe 
scores of programmable 
shortcut keys, and the comfort 
of ergonomic design, co- 
workers still refuse to address 
you by your proper title, 
“Starship Captain, First Class”. 
Capricorn 


Dec. 22-Jan. 19 


Despite the undeniable creative ingenuity 
you've displayed in making RJ45 cabling 

a central part of your office decor motif, one 
fact remains: Wireless Connectivity is con- 
venient, inexpensive, and simple to implement 
Capricorn, your heart is in the right place 


but form will never outstrip function 


With Venus’ ascension into the house of Mars, 
you'll s se thousands and flout cr 
boundaries when you fall head-ov 
in love with the sleek design of Microsoft's 


new Wireless IntelliMouse Explorer. 


Aquarius 
Jan. 20-Feb. 18 


Pisces 
Feb. 19-Mar. 20 


Wireless connectivity and unfettered 
mobility is brought to the masses through 
Microsoft's line of Wireless Routers and 
Access Points. Your Pisceian enthusiasm 

is understandable, but you should resist urges 
to take your laptop into the poo! with you 


softchoice 


High Tech Horoscopes “+ 


Aries 
Mar. 21-Apr. 19 


The shock and confusion of finding out that 
wrist cramps has nothing to do with either 
fish or the London Chunnel is only intensified 
when you realize the whole debacle could 
have been averted by an ergonomically 
Taurus 


designed Microsoft Natural Keyboard. 
Apr. 20-May 20 


Taurus, in keeping with your sometimes 
bullheaded exterior, you'll no doubt find 
yourself drawn to Microsoft's Leather-bound 
Mouse. Your workplace 
comfort has reached 
previously unattainable 
heights - leather on 
a mouse. Trust me, the 


idn't see that one 
Gemini 


ng either 
May 21-Jun. 21 


For legal reasons, the stars can't guarantee 
you enhanced productivity, but they have a 
sneaking suspicion that 

a Microsoft Wireless 

Notebook Adapter 

will get you closer to 

your lifelong dream of 

sending emails while 

“using the facilities” 


Cancer 
June 22-July 22 


. 


& 


The sheer variety and 6 month battery life 
of Microsoft's new line of wireless mice are 
the key motivators behind your decision 

to have 8 extra hands surgically attached 


WWW.SOFTCHOICE.COM/BROWSER 


saben es 


Leo 


Jul. 23-Aug. 22 


Wrist cramps will prevent you from throwing 
caution to the wind this week, due to your 
poorly designed keyboard. If only you'd had 
an ergonomically designed keyboard to support 
your wrists, and eliminated excess keystrokes 
with customizable keys. Do the stars need 
to spell it out for you here? You need the 
Wireless Desktop Elite from Microsoft! 


Virgo 

Aug. 23-Sep. 22 

Expect to feel betrayed by television when 
you find out that your purchase of Microsoft's 
Trackball Explorer does not in fact guarantee 
you employment at 

missile command. Your 

fury is moderately 

allayed, however, 

by the knowledge 

that you own the 

most powerful, 

intuitive, and sleek 

input device on the 

market today. 


Libra 


Sep. 23-Oct. 23 
Inter-office gang warfare is narrowly 


averted when you're made privy to the fact 
that Microsoft's new line of keyboards and 
mice are in fact available in a veritable 
Scorpio 


cornucopia of colors 

Oct. 24-Nov. 21 TM 
You're delighted to find that Microsoft's 
new Broadband Networking 10/100 Ethernet 
Wired Base Station make setting up your 
small office so easy a trained chimp could 
do it. Not as delighted: your trained chimp, 
whose previous responsibilities of eating 


bananas and doing handstands have now 
been expanded 


Microsoft 





It’s like getting him 
in every box. 


What's more important than security? Not much, 
unless it’s the high-performance features that 
give you broader control over your systems. 
If those seem like opposing objectives, it’s 
time to check out OmniView SE Plus Series 
KVM Switches from Belkin. With enhanced 
security and innovative technology, SE 
Plus lets you switch between as many as 
16 PS/2 and USB servers from one PS/2 
console—without compromising network 
security. It keeps hackers away from your 
critical data by directly routing input and output 
signals to each computer, preventing unintended 
information exchange. That's a secure feeling. With 
our pending EAL 4 rating, it’s like knowing no one’s 
going to drive out of the lot in your car while that 
Security guard’s on duty. 


S60 go ahead, connect your servers. The tall guy’s watching. 


OmniView SE Plus Series KVM Switches 


Belkin Corporation 
310.898.1100 ext. 2503 


. Compton * CA * USA 
belkin.com 


2003 Belkin Corporation. All rights reserved. 





Prevent complex security outbreaks such as Sobig.F and W32.Blaster before they occur! 


The secure enterprise is here. Symantec™ Client Security is the world’s first comprehensive, fully-integrated client 
security solution. It seamlessly integrates the critical tools — intrusion detection, client firewall and virus protection — 
into a powerful, cohesive defense. By working as a unified system to scan both inbound and outbound traffic, it allows 
you to better detect, contain and eliminate complex blended threats like W32Blaster and Sobig.F. And to help you manage 
it all, a centralized console lets you install, configure and monitor all components from a single workstation. 


The revolution continues. Learn how you can save up to 65% on this product by calling Softchoice today at 
1.877.967.3737 or visit our website at www.softchoice.com/symantec. 


softchoice 9} symantec. 





Better Performance. Better Price. 


The smartest way to run your network 
is also the smartest way to run your business. 


Stet eal ee) 


| Scalable, Affordable Unmanaged Switch 
| © 24 Fast Ethernet Ports Plus Gigabit Port 
| © 1 Gigabit P nnectivity to a Server 


| © 1-Yr Next Business D 
| 


| 
$249 E-VALUE Code: 20281-$11202 


| Recommended Upgrade: 


| © 3-Yr Next Business Day Advanced Exchange Service® add $49 


ad Exchange Service” Standard 


mt ae aya ae 
High-Performance, All-Gigabit Managed Switch 


| © 12 Copper Gigabit Ports Plus 4 SFP Fiber Uplinks 
| © Layer-3 Aware C of Service Prioritization 
| © Advanced Manage! 


|} © 3-Yr Next Busi 


$ as low as $32 ‘mo., (46 pmts.”) 
| E-VALUE Code: 20281-S11211 


Recommended Upgrade: 
| © 3-Yr Same Day 4-Hour Response Advanced Exchange 


299 


Cail: M-F 7a-9p|Sat 8a-Sp CT 


ee) ieee 


aga ait he) | ea me 


Stackable, Enterprise Class Managed Switch 
© 48 Fast Ethernet Ports Plus 2 Built-in 

© Multi-Layer Traffic Ciassification 

© Advanced Management via Browser or | 

© 3-Yr Next Business Day Advanced Exchang 


$ as low as $26/mo., (46 pr 
E-VALUE Code: 20281-$11209 


Recommended Upgrade: 
© 3-Yr Same Day 4-Hour Response 24x7 Advanced 
add $199 


UTR el eye ee TT 
High-Performance All-Gigabit Managed Switch 


© 24 Copper Gigabit Ports Plus 4 SFP Fiber Uplink 
© Layer-3 Aware Class of S 

nced Manag 
© 3-Yr Next Business Dz 


$4999 as low as $54/mo.. (46 pmt 
E-VALUE Code: 20281-$11219 


Recommended Upgrade: 
@ 3-Yr Same Day 4-Hour Response 24x7 Ad: 


coeene 


It's a Dell, so you know you're going to save money. But let's talk performance. fr 


standard Fast Ethernet to high-speed Gigabit Ethernet over copper or fiber 
switches are designed to offer full wire-spee 

tests confirmed that the Dell PowerConnec 

48%. Plus, PowerConnect switches are | 

a first-time network or expanding an existing 


performance to your LAN and start playing 


Better network solutions. Easy as D@LL 


Click www.dell.com/switch Call 1-800-953-5618 
GO 





IBM 
On Demand 


Only Pay for the 
Processors You Use 


But It’s $46,875 Per Processor 


One to 32 Processors 
in a Single Large IBM Server 


Oracle 
Grid 


Only Pay for the 
Processors You Use 


$3,089 Per Processor 


Two to 128 Processors 
in a Cluster of Small Servers 


ORACLE 


oracle.com/grid 
or call 1.800.633.0753 


Comparison is based on a single IBM pSeries 690 Server versus a grid of small servers. Per processor prices are list prices for IBM pSeries 690: 
$46,875 per 1.7 GHZ PowerPC Processor compared to average list prices of Dell PowerEdge 2650: $2,656 per single 2.8 GHZ Intel Xeon Processor; 
HP ProLiant DL380 G3: $3,038 per single 2.8 GHZ Intel Xeon Processor; IBM xSeries 335: $3,378 per single 2.8 GHZ Intel Xeon Processor and 
Sun Fire V65x: $3,282 per single 2.8 GHZ Intel Xeon Processor. 


2003, Oracle Corporation. All rights reserved. Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners. 





